This bug was fixed in the package libv8 - 3.8.9.20-2 Sponsored for Logan Rosen (logan)
--------------- libv8 (3.8.9.20-2) unstable; urgency=low * Cherry-picked four upstream patches from 3.8.9.29: + r11654.patch: fix CVE-2011-3111, closes:bug#687574. + r12161.patch: Fix ICs for slow objects with native accessor. + r12336.patch: Fix bug in compare IC. + r12460.patch: Fix some corner cases in skipping native methods using caller. Fix binding in new Function(). -- Jérémy Lal <kapo...@melix.org> Sat, 29 Sep 2012 01:04:06 +0200 ** Changed in: libv8 (Ubuntu) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1004795 Title: (CVE-2011-3083) <chromium-browser-19.0.1084.52, <libv8-3.9.24.28: multiple vulnerabilities (CVE-2011-{3103,3104,3105,3106,3107,3108,3109,3111,3115}) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1004795/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs