This bug was fixed in the package libv8 - 3.8.9.20-2
Sponsored for Logan Rosen (logan)
---------------
libv8 (3.8.9.20-2) unstable; urgency=low
* Cherry-picked four upstream patches from 3.8.9.29:
+ r11654.patch: fix CVE-2011-3111, closes:bug#687574.
+ r12161.patch: Fix ICs for slow objects with native accessor.
+ r12336.patch: Fix bug in compare IC.
+ r12460.patch: Fix some corner cases in skipping native methods
using caller. Fix binding in new Function().
-- Jérémy Lal <kapo...@melix.org> Sat, 29 Sep 2012 01:04:06 +0200
** Changed in: libv8 (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1004795
Title:
(CVE-2011-3083) <chromium-browser-19.0.1084.52, <libv8-3.9.24.28:
multiple vulnerabilities
(CVE-2011-{3103,3104,3105,3106,3107,3108,3109,3111,3115})
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1004795/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
