807845 – (CVE-2011-3057) CVE-2011-3057 v8: invalid read flaw

Bug 807845 (CVE-2011-3057) - CVE-2011-3057 v8: invalid read flaw

Summary: CVE-2011-3057 v8: invalid read flaw

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2011-3057
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2012-03-28 21:33 UTC by Vincent Danen
Modified:	2019-09-29 12:51 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2013-08-01 16:10:42 UTC
Embargoed:

Attachments	(Terms of Use)

Description Vincent Danen 2012-03-28 21:33:22 UTC

The Google Chrome release 18.0.1025.142 noted the following flaw in v8:

[$500] [117794] Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler.

Unfortunately the upstream bug report is private, so I cannot provide further details.

The Gentoo bug [1] implies this is fixed in 3.8.9.16, but I cannot seem to verify this.

[1] https://bugs.gentoo.org/show_bug.cgi?id=410045

Comment 1 Vincent Danen 2013-08-01 16:10:42 UTC

This was corrected in Fedora quite some time ago; not sure why this was in an embargoed state for so long.  Looks to have been fixed in v8 3.8.9.16.

Note You need to log in before you can comment on or make changes to this bug.