Fedora 19 Update: v8-3.14.5.10-8.fc19
updates at fedoraproject.org
updates at fedoraproject.org
Mon May 12 05:22:21 UTC 2014
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-5969
2014-05-03 19:14:40
--------------------------------------------------------------------------------
Name : v8
Product : Fedora 19
Version : 3.14.5.10
Release : 8.fc19
URL : http://code.google.com/p/v8
Summary : JavaScript Engine
Description :
V8 is Google's open source JavaScript engine. V8 is written in C++ and is used
in Google Chrome, the open source browser from Google. V8 implements ECMAScript
as specified in ECMA-262, 3rd edition.
--------------------------------------------------------------------------------
Update Information:
This update modifies the way V8 queries the system time, greatly improving performance on virtual machines where the real time clock is virtualized.
For more information, see:
https://github.com/joyent/node/commit/f9ced08de30c37838756e8227bd091f80ad9cafa
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 3 2014 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-8
- use clock_gettime() instead of gettimeofday(), which increases V8 performance
dramatically on virtual machines
* Tue Mar 18 2014 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-7
- backport fix for unsigned integer arithmetic (RHBZ#1077136; CVE-2014-1704)
* Mon Feb 24 2014 Tomas Hrcka <thrcka at redhat.com> - 1:3.14.5.10-6
- Backport fix for incorrect handling of popular pages (RHBZ#1059070; CVE-2013-6640)
* Fri Feb 14 2014 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-5
- rebuild for icu-52
* Mon Jan 27 2014 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-4
- backport fix for enumeration for objects with lots of properties
* Fri Dec 13 2013 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-3
- backport fix for out-of-bounds read DoS (RHBZ#1039889; CVE-2013-6640)
* Fri Aug 2 2013 T.C. Hollingsworth <tchollingsworth at gmail.com> - 1:3.14.5.10-2
- backport fix for remote DoS or unspecified other impact via type confusion
(RHBZ#991116; CVE-2013-2882)
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update v8' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list