Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: [21-x-y] reland cherry-pick c79148742421 from v8 #36821

Merged
merged 1 commit into from
Jan 10, 2023
Merged

chore: [21-x-y] reland cherry-pick c79148742421 from v8 #36821

merged 1 commit into from
Jan 10, 2023

Conversation

ppontes
Copy link
Member

@ppontes ppontes commented Jan 6, 2023

Reland the cherry-pick of the fix to CVE-2022-4174 after it was reverted in #36769. This includes a V8 version bump that eliminates the crash caused by the original fix when attempting to deserialize cached V8 code compiled by a pre-fix version of V8.

Merged: Reland "[Promise.any] Fix errors allocation"

Bug: chromium:1379054

(cherry picked from commit 8b35091b2d244c975975e1c78e4cd09cb479b5dc)

Change-Id: Iec8f8bb51f4434d6ae86887cf742f2883a9b7bef
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4004804
Reviewed-by: Adam Klein adamk@chromium.org
Commit-Queue: Shu-yu Guo syg@chromium.org
Cr-Commit-Position: refs/branch-heads/10.8@{#34}
Cr-Branched-From: f1bc03fd6b4c201abd9f0fd9d51fb989150f97b9-refs/heads/10.8.168@{#1}
Cr-Branched-From: 237de893e1c0a0628a57d0f5797483d3add7f005-refs/heads/main@{#83672}

Ref electron/security#252

Notes: Security: backported fix for CVE-2022-4174.

@ppontes ppontes added security 🔒 semver/patch backwards-compatible bug fixes backport-check-skip Skip trop's backport validity checking 21-x-y labels Jan 6, 2023
@ppontes ppontes requested review from a team as code owners January 6, 2023 13:11
@zcbenz zcbenz force-pushed the cherry-pick/21-x-y/v8/c79148742421-fixed branch from 8feb5eb to 0d8514b Compare January 10, 2023 00:40
@codebytere codebytere merged commit 5698bee into 21-x-y Jan 10, 2023
@codebytere codebytere deleted the cherry-pick/21-x-y/v8/c79148742421-fixed branch January 10, 2023 13:26
@release-clerk
Copy link

release-clerk bot commented Jan 10, 2023

Release Notes Persisted

Security: backported fix for CVE-2022-4174.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zcbenz zcbenz zcbenz approved these changes

@codebytere codebytere codebytere approved these changes

Assignees
No one assigned
Labels
21-x-y backport-check-skip Skip trop's backport validity checking security 🔒 semver/patch backwards-compatible bug fixes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@ppontes @zcbenz @codebytere