hydrogen.cc in Google V8, as used Google Chrome prior to 40.0.2214.91, does not properly handle arrays with holes, which allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted JavaScript code that triggers an array copy.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |