CVE-2013-6668
Publication date 5 March 2014
Last updated 24 July 2024
Ubuntu priority
Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, as used in Google Chrome before 33.0.1750.146, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Status
Package | Ubuntu Release | Status |
---|---|---|
chromium-browser | ||
18.04 LTS bionic |
Fixed 33.0.1750.152-0ubuntu1~pkg995.1
|
|
16.04 LTS xenial |
Fixed 33.0.1750.152-0ubuntu1~pkg995.1
|
|
14.04 LTS trusty |
Fixed 33.0.1750.152-0ubuntu1~pkg995.1
|
|
libv8 | ||
18.04 LTS bionic | Not in release | |
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
libv8-3.14 | ||
18.04 LTS bionic | Ignored libv8 not supported | |
16.04 LTS xenial | Ignored libv8 not supported | |
14.04 LTS trusty | Not in release | |
oxide-qt | ||
18.04 LTS bionic | Not in release | |
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty | Not in release | |
qtjsbackend-opensource-src | ||
18.04 LTS bionic | Not in release | |
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
Notes
jdstrand
qtjsbackend-opensource-src contains an embedded libv8, however applications using qtjsbackend-opensource-src should not process untrusted javascript and therefore Ubuntu will not process updates for libv8 in this package. (See LP: #1157732 for details)
mikesalvatore
The Ubuntu Security Team does not support libv8
References
Other references
- https://code.google.com/p/v8/source/detail?r=19599
- https://code.google.com/p/v8/source/detail?r=19553
- https://code.google.com/p/v8/source/detail?r=19475
- https://code.google.com/p/chromium/issues/detail?id=347909
- https://code.google.com/p/chromium/issues/detail?id=344186
- https://code.google.com/p/chromium/issues/detail?id=343964
- http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.html
- https://www.cve.org/CVERecord?id=CVE-2013-6668