CVE-2014-3152

high

Published 2014-05-21 · Modified 2026-05-06

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

—

CVSS v4 NEW

—

not yet in upstream

VIR risk

7.5

Description

Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a negative key value.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.

✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

OS impact

OS	Version	Status
fedora	20	affected
fedora	21	affected
fedora	22	affected

Application impact

Vendor	Product	Versions
google	v8	`{"endIncluding":"3.25.28"}`
google	v8	`3.25.0`
google	v8	`3.25.1`
google	v8	`3.25.2`
google	v8	`3.25.3`
google	v8	`3.25.4`
google	v8	`3.25.5`
google	v8	`3.25.6`
google	v8	`3.25.7`
google	v8	`3.25.8`
google	v8	`3.25.9`
google	v8	`3.25.10`
google	v8	`3.25.11`
google	v8	`3.25.12`
google	v8	`3.25.13`
google	v8	`3.25.14`
google	v8	`3.25.15`
google	v8	`3.25.16`
google	v8	`3.25.17`
google	v8	`3.25.18`
google	v8	`3.25.19`
google	v8	`3.25.20`
google	v8	`3.25.21`
google	v8	`3.25.22`
google	v8	`3.25.23`
google	v8	`3.25.24`
google	v8	`3.25.25`
google	v8	`3.25.26`
google	v8	`3.25.27`
google	chrome	`{"endIncluding":"35.0.1916.113"}`
google	chrome	`35.0.1916.0`
google	chrome	`35.0.1916.1`
google	chrome	`35.0.1916.2`
google	chrome	`35.0.1916.3`
google	chrome	`35.0.1916.4`
google	chrome	`35.0.1916.5`
google	chrome	`35.0.1916.6`
google	chrome	`35.0.1916.7`
google	chrome	`35.0.1916.8`
google	chrome	`35.0.1916.9`
google	chrome	`35.0.1916.10`
google	chrome	`35.0.1916.11`
google	chrome	`35.0.1916.13`
google	chrome	`35.0.1916.14`
google	chrome	`35.0.1916.15`
google	chrome	`35.0.1916.17`
google	chrome	`35.0.1916.18`
google	chrome	`35.0.1916.19`
google	chrome	`35.0.1916.20`
google	chrome	`35.0.1916.21`
google	chrome	`35.0.1916.22`
google	chrome	`35.0.1916.23`
google	chrome	`35.0.1916.27`
google	chrome	`35.0.1916.31`
google	chrome	`35.0.1916.32`
google	chrome	`35.0.1916.33`
google	chrome	`35.0.1916.34`
google	chrome	`35.0.1916.35`
google	chrome	`35.0.1916.36`
google	chrome	`35.0.1916.37`
google	chrome	`35.0.1916.38`
google	chrome	`35.0.1916.39`
google	chrome	`35.0.1916.40`
google	chrome	`35.0.1916.41`
google	chrome	`35.0.1916.42`
google	chrome	`35.0.1916.43`
google	chrome	`35.0.1916.44`
google	chrome	`35.0.1916.45`
google	chrome	`35.0.1916.46`
google	chrome	`35.0.1916.47`
google	chrome	`35.0.1916.48`
google	chrome	`35.0.1916.49`
google	chrome	`35.0.1916.51`
google	chrome	`35.0.1916.52`
google	chrome	`35.0.1916.54`
google	chrome	`35.0.1916.56`
google	chrome	`35.0.1916.57`
google	chrome	`35.0.1916.59`
google	chrome	`35.0.1916.61`
google	chrome	`35.0.1916.68`
google	chrome	`35.0.1916.69`
google	chrome	`35.0.1916.71`
google	chrome	`35.0.1916.72`
google	chrome	`35.0.1916.74`
google	chrome	`35.0.1916.77`
google	chrome	`35.0.1916.80`
google	chrome	`35.0.1916.82`
google	chrome	`35.0.1916.84`
google	chrome	`35.0.1916.85`
google	chrome	`35.0.1916.86`
google	chrome	`35.0.1916.88`
google	chrome	`35.0.1916.90`
google	chrome	`35.0.1916.92`
google	chrome	`35.0.1916.93`
google	chrome	`35.0.1916.95`
google	chrome	`35.0.1916.96`
google	chrome	`35.0.1916.98`
google	chrome	`35.0.1916.99`
google	chrome	`35.0.1916.101`
google	chrome	`35.0.1916.103`
google	chrome	`35.0.1916.104`
google	chrome	`35.0.1916.105`
google	chrome	`35.0.1916.106`
google	chrome	`35.0.1916.107`
google	chrome	`35.0.1916.108`
google	chrome	`35.0.1916.109`
google	chrome	`35.0.1916.110`
google	chrome	`35.0.1916.111`
google	chrome	`35.0.1916.112`

References

CWEs

CWE-189

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.