UBUNTU-CVE-2015-5605

UNKNOWN

The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause a denial of service (application crash)

Published Jul 22, 2015

Modified 1 years ago

Fix available

Details

The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause a denial of service (application crash) via crafted JavaScript code, as demonstrated by an error in garbage collection during allocation of a stack-overflow exception message.

Affected Packages

Ubuntu:14.04:LTSchromium-browser

Affected versions:

29.0.1547.65-0ubuntu231.0.1650.63-0ubuntu1~20131204.132.0.1700.107-0ubuntu1~20140204.977.133.0.1750.152-0ubuntu1~pkg995.134.0.1847.116-0ubuntu236.0.1985.125-0ubuntu1.14.04.0~pkg102937.0.2062.120-0ubuntu0.14.04.1~pkg104937.0.2062.94-0ubuntu0.14.04.1~pkg104238.0.2125.111-0ubuntu0.14.04.1.106139.0.2171.65-0ubuntu0.14.04.1.1064+5 more

Fixed in:

44.0.2403.89-0ubuntu0.14.04.1.1095

Ubuntu:Pro:16.04:LTSlibv8-3.14

Affected versions:

3.14.5.8-5ubuntu2

Ubuntu:Pro:18.04:LTSlibv8-3.14

Affected versions:

3.14.5.8-11ubuntu1

Ubuntu:16.04:LTSlibv8-3.14

Affected versions:

3.14.5.8-5ubuntu2

Ubuntu:18.04:LTSlibv8-3.14

Affected versions:

3.14.5.8-11ubuntu1

References

REPORThttp://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html REPORThttps://ubuntu.com/security/CVE-2015-5605 REPORThttps://ubuntu.com/security/notices/USN-2677-1 REPORThttps://www.cve.org/CVERecord?id=CVE-2015-5605

CVE-2015-5605 USN-2677-1

Ecosystems

Ubuntu 14.04 LTS Ubuntu Pro 16.04 LTS Ubuntu Pro 18.04 LTS Ubuntu 16.04 LTS Ubuntu 18.04 LTS

Timeline

PublishedJul 22, 2015

ModifiedJan 13, 2025

UBUNTU-CVE-2015-5605 | Mondoo Vulnerability Intelligence

UBUNTU-CVE-2015-5605

Details

Affected Packages

References

Related

Ecosystems

Timeline