Bug 1086112 (CVE-2014-1716)

Summary: CVE-2014-1716 v8: cross-site scripting flaw in Runtime_SetPrototype()
Product: [Other] Security Response Reporter: Murray McAllister <mmcallis>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: abaron, aortega, apevec, ayoung, bdunne, bgollahe, bkearney, bleanhar, cbillett, ccoleman, chrisw, cpelland, dajohnso, dallan, dclarizi, dmcphers, drieden, gkotton, gmccullo, jdetiber, jfrey, jialiu, jkeck, jokerman, jomara, jorton, jprause, jrafanie, katello-bugs, kseifried, lhh, lmeyer, markmc, mfeifer, mmaslano, mmccomas, mmccune, obarenbo, rbryant, rhos-maint, sclewis, tcallawa, tchollingsworth, thrcka, tjay, tkramer, tomckay, tomspur, vdanen, xlecauch, yeylon
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-06-16 10:35:12 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1086126    

Description Murray McAllister 2014-04-10 07:05:10 UTC 
Common Vulnerabilities and Exposures assigned an identifier CVE-2014-1716 to
the following vulnerability:

Name: CVE-2014-1716
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1716
Assigned: 20140129
Reference: http://googlechromereleases.blogspot.com/2014/04/stable-channel-update.html
Reference: https://code.google.com/p/chromium/issues/detail?id=354123
Reference: https://code.google.com/p/v8/source/detail?r=20138

Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype
function in runtime.cc in Google V8, as used in Google Chrome before
34.0.1847.116, allows remote attackers to inject arbitrary web script
or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

From a brief, initial investigation, the function is not in the versions of v8 as shipped in Red Hat products.
Comment 1 Tomas Hoger 2014-06-16 10:35:12 UTC 
This fix is not applicable to v8 3.14.