Back to search
CVE-2013-6638
Published: Dec 7, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large typed array, related to the (1) Runtime_TypedArrayInitialize and (2) Runtime_TypedArrayInitializeFromArrayLike functions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
56217
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2013:1962
vendor-advisory
x_refsource_SUSE
http://code.google.com/p/v8/source/detail?r=17800
x_refsource_CONFIRM
openSUSE-SU-2014:0092
vendor-advisory
x_refsource_SUSE
[v8-dev] 20131115 Limit the size for typed arrays to MaxSmi. (issue 73943004)
mailing-list
x_refsource_MLIST
openSUSE-SU-2013:1960
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2014:0065
vendor-advisory
x_refsource_SUSE
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
x_refsource_CONFIRM
openSUSE-SU-2013:1933
vendor-advisory
x_refsource_SUSE
DSA-2811
vendor-advisory
x_refsource_DEBIAN
openSUSE-SU-2013:1927
vendor-advisory
x_refsource_SUSE
56216
third-party-advisory
x_refsource_SECUNIA
1029442
vdb-entry
x_refsource_SECTRACK
https://code.google.com/p/chromium/issues/detail?id=319722
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now