RHSA-2017:0881 - Security Advisory
Moderate: v8 security update
Security Advisory: Moderate
An update for v8 is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
- An integer-overflow flaw was found in V8's Zone class when allocating new memory (Zone::New() and Zone::NewExpand()). An attacker with the ability to manipulate a large zone could crash the application or, potentially, execute arbitrary code with the application privileges. (CVE-2016-1669)
For details on how to apply this update, which includes the changes described in this advisory, refer to:
- Red Hat OpenStack 7 x86_64
- BZ - 1335449 - CVE-2016-1669 V8: integer overflow leading to buffer overflow in Zone::New
Red Hat OpenStack 7