The Google Chrome release 18.0.1025.142 noted the following flaw in v8: [$500] [117794] Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler. Unfortunately the upstream bug report is private, so I cannot provide further details. The Gentoo bug [1] implies this is fixed in 3.8.9.16, but I cannot seem to verify this. [1] https://bugs.gentoo.org/show_bug.cgi?id=410045
This was corrected in Fedora quite some time ago; not sure why this was in an embargoed state for so long. Looks to have been fixed in v8 3.8.9.16.