[Secure-testing-commits] r31709 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Jan 26 23:00:27 UTC 2015 

Author: jmm
Date: 2015-01-26 23:00:27 +0000 (Mon, 26 Jan 2015)
New Revision: 31709

Modified:
   data/CVE/list
Log:
add some libv8 issues for recent chromium issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-26 22:52:17 UTC (rev 31708)
+++ data/CVE/list	2015-01-26 23:00:27 UTC (rev 31709)
@@ -460,7 +460,8 @@
 CVE-2015-1346 (Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
-	TODO: check, also libv8-3.14?
+	- libv8-3.14 <unfixed> (unimportant; bug #773671)
+	NOTE: libv8 not covered by security support
 CVE-2015-1345 [heap buffer overrun]
 	RESERVED
 	- grep <unfixed> (bug #776039)
@@ -8003,6 +8004,8 @@
 CVE-2014-7939 (Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
+	- libv8-3.14 <unfixed> (unimportant; bug #773671)
+	NOTE: libv8 not covered by security support
 CVE-2014-7938 (The Fonts implementation in Google Chrome before 40.0.2214.91 allows ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
@@ -8027,6 +8030,8 @@
 CVE-2014-7931 (factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
+	- libv8-3.14 <unfixed> (unimportant; bug #773671)
+	NOTE: libv8 not covered by security support
 CVE-2014-7930 (Use-after-free vulnerability in core/events/TreeScopeEventContext.cpp ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
@@ -8036,9 +8041,13 @@
 CVE-2014-7928 (hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
+	- libv8-3.14 <unfixed> (unimportant; bug #773671)
+	NOTE: libv8 not covered by security support
 CVE-2014-7927 (The SimplifiedLowering::DoLoadBuffer function in ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>
+	- libv8-3.14 <unfixed> (unimportant; bug #773671)
+	NOTE: libv8 not covered by security support
 CVE-2014-7926 (The Regular Expressions package in International Components for ...)
 	- chromium-browser 40.0.2214.91-1
 	[squeeze] - chromium-browser <end-of-life>

More information about the Secure-testing-commits mailing list