Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 795201 (CVE-2021-30551) - [TRACKER] Type Confusion in V8 (CVE-2021-30551)
Summary: [TRACKER] Type Confusion in V8 (CVE-2021-30551)
Alias: CVE-2021-30551
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
Keywords: Tracker
Depends on: CVE-2021-30544, CVE-2021-30545, CVE-2021-30546, CVE-2021-30548, CVE-2021-30549, CVE-2021-30550, CVE-2021-30552, CVE-2021-30553 800181
  Show dependency tree
Reported: 2021-06-10 09:39 UTC by Thomas Deutschmann (RETIRED)
Modified: 2022-08-15 03:19 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Deutschmann (RETIRED) gentoo-dev 2021-06-10 09:39:06 UTC
A type confusion flaw was found in the V8 component of the Chromium browser.

Upstream bug(s):

External References:
Comment 1 Richard Yao (RETIRED) gentoo-dev 2021-06-11 18:26:14 UTC
This vulnerability is under active exploitation:

I assume that dev-qt/qtwebengine is also affected, as it is a library version of chromium.

It be worthwhile to review the potential for exploitation of this vulnerability in the electron software in the tree. Off the top of my head, that includes:


There are probably others. Embedded chromium is in many places.

I had mistakenly posted about this in bug #789420.
Comment 2 NATTkA bot gentoo-dev 2021-07-29 17:21:50 UTC Comment hidden (obsolete)
Comment 3 NATTkA bot gentoo-dev 2021-07-29 17:30:00 UTC Comment hidden (obsolete)
Comment 4 NATTkA bot gentoo-dev 2021-07-29 17:37:58 UTC Comment hidden (obsolete)
Comment 5 NATTkA bot gentoo-dev 2021-07-29 17:46:05 UTC Comment hidden (obsolete)
Comment 6 NATTkA bot gentoo-dev 2021-07-29 18:02:02 UTC Comment hidden (obsolete)
Comment 7 NATTkA bot gentoo-dev 2021-07-29 18:10:22 UTC
Package list is empty or all packages have requested keywords.