Common Vulnerabilities and Exposures assigned an identifier CVE-2014-3195 to
the following vulnerability:
Google V8, as used in Google Chrome before 38.0.2125.101, does not
uninitialized memory and does not properly concatenate arrays of
double-precision floating-point numbers, which allows remote attackers
to the PagedSpace::AllocateRaw and NewSpace::AllocateRaw functions in
heap/spaces-inl.h, the LargeObjectSpace::AllocateRaw function in
heap/spaces.cc, and the Runtime_ArrayConcat function in runtime.cc.
From an initial inspection, it is not clear if the Fedora v8 packages are affected or not.
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2014:1626 https://rhn.redhat.com/errata/RHSA-2014-1626.html