A type confusion flaw was found in the V8 component of the Chromium browser.
This vulnerability is under active exploitation:
I assume that dev-qt/qtwebengine is also affected, as it is a library version of chromium.
It be worthwhile to review the potential for exploitation of this vulnerability in the electron software in the tree. Off the top of my head, that includes:
There are probably others. Embedded chromium is in many places.
I had mistakenly posted about this in bug #789420.
Package list is empty or all packages have requested keywords.