1
PublicDateAtUSN: 2015-01-22
2
Candidate: CVE-2014-7927
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7927
6
https://codereview.chromium.org/824843002
7
https://code.google.com/p/chromium/issues/detail?id=444695
8
http://googlechromereleases.blogspot.com/2015/01/stable-update.html
9
https://usn.ubuntu.com/usn/usn-2476-1
11
The SimplifiedLowering::DoLoadBuffer function in
12
compiler/simplified-lowering.cc in Google V8, as used in Google Chrome
13
before 40.0.2214.91, does not properly choose an integer data type, which
14
allows remote attackers to cause a denial of service (memory corruption) or
15
possibly have unspecified other impact via crafted JavaScript code.
20
Discovered-by: Christian Holler
23
Patches_chromium-browser:
24
upstream_chromium-browser: released (40.0.2214.91)
25
lucid_chromium-browser: ignored (reached end-of-life)
26
precise_chromium-browser: ignored
27
trusty_chromium-browser: released (40.0.2214.94-0ubuntu0.14.04.1.1068)
28
utopic_chromium-browser: released (40.0.2214.94-0ubuntu0.14.10.1.1110)
29
vivid_chromium-browser: released (40.0.2214.94-0ubuntu1.1120)
30
wily_chromium-browser: released (40.0.2214.94-0ubuntu1.1120)
31
devel_chromium-browser: released (40.0.2214.94-0ubuntu1.1120)
34
upstream_oxide-qt: released (1.4.2)
37
trusty_oxide-qt: released (1.4.2-0ubuntu0.14.04.1)
38
utopic_oxide-qt: released (1.4.2-0ubuntu0.14.10.1)
39
vivid_oxide-qt: released (1.4.2-0ubuntu1)
40
wily_oxide-qt: released (1.4.2-0ubuntu1)
41
devel_oxide-qt: released (1.4.2-0ubuntu1)