Bug 1150848 – CVE-2014-3188 v8: IPC and v8 issue fixed in Google Chrome 38.0.2125.101

Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.

Bug 1150848 - (CVE-2014-3188) CVE-2014-3188 v8: IPC and v8 issue fixed in Google Chrome 38.0.2125.101

Summary:	CVE-2014-3188 v8: IPC and v8 issue fixed in Google Chrome 38.0.2125.101

Status:	CLOSED WONTFIX

Aliases:	CVE-2014-3188

Product:	Security Response
Classification:	Other
Component:	vulnerability (Show other bugs)
Sub Component:
Version:	unspecified
Hardware:	All Linux

Priority	high Severity high
Target Milestone:	---
Target Release:	---
Assigned To:	Red Hat Product Security
QA Contact:
Docs Contact:

URL:
Whiteboard:	impact=important,public=20140922,repo...
Keywords:	Security

Depends On:	1151335 1151338
Blocks:	1150851 1151371
	Show dependency tree / graph

Reported:	2014-10-09 00:21 EDT by Murray McAllister
Modified:	2016-04-26 10:17 EDT (History)
CC List:	52 users (show)

See Also:
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2015-01-21 11:23:57 EST
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

External Trackers
Tracker	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2014:1626	normal	SHIPPED_LIVE	Critical: chromium-browser security update	2014-10-14 07:22:06 EDT

Groups: None (edit)

Description Murray McAllister 2014-10-09 00:21:31 EDT

Common Vulnerabilities and Exposures assigned an identifier CVE-2014-3188 to
the following vulnerability:

Name: CVE-2014-3188
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3188
Assigned: 20140503
Reference: http://googlechromereleases.blogspot.com/2014/10/stable-channel-update-for-chrome-os.html
Reference: http://googlechromereleases.blogspot.com/2014/10/stable-channel-update.html
Reference: https://code.google.com/p/v8/source/detail?r=24125
Reference: https://crbug.com/416449

Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101
do not properly handle the interaction of IPC and Google V8, which
allows remote attackers to execute arbitrary code via vectors
involving JSON data, related to improper parsing of an escaped index
by ParseJsonObject in json-parser.h.

From an initial inspection, the affected function does not appear to be in Fedora v8 or the ruby193-v8-3.14.5.10 packages.

Comment 3 errata-xmlrpc 2014-10-14 04:34:35 EDT

This issue has been addressed in the following products:

  Supplementary for Red Hat Enterprise Linux 6

Via RHSA-2014:1626 https://rhn.redhat.com/errata/RHSA-2014-1626.html

Note You need to log in before you can comment on or make changes to this bug.

abaron
aortega
apevec
ayoung
bdunne
bkearney
bleanhar
cbillett
ccoleman
chrisw
cpelland
dajohnso
dallan
dclarizi
dmcphers
gkotton
gmccullo
jamielinux
jdetiber
jfrey
jialiu
jkeck
joelsmith
jokerman
jorton
jprause
jrafanie
jvlcek
katello-bugs
kseifried
lhh
lmeyer
lpeer
markmc
mburns
mmaslano
mmccomas
mmccune
mmcgrath
obarenbo
rbryant
rhos-maint
sclewis
tcallawa
tchollingsworth
thrcka
tjay
tomckay
tomspur
tpopela
xlecauch
yeylon