The vulnerability in the V8 browser kernel of Google Chrome, which allows a hacker to trigger a service failure.

The vulnerability of Google Chrome’s V8 browser kernel relates to reading beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to trigger a service failure through a specially created HTML page...

The vulnerability of the V8 component in the Google Chrome browser allows a hacker to trigger a service failure.

The vulnerability of the V8 component in Google Chrome browser is related to reading beyond the buffer limit. Exploiting this vulnerability can allow a malicious actor to cause a service failure through a specially created HTML page...

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

CVE-2019-11756

Improper refcounting of soft token session objects could cause a use-after-free and crash likely limited to a denial of service. This vulnerability affects Firefox 71...

CVE-2019-17012

Mozilla developers reported memory safety bugs present in Firefox 70 and Firefox ESR 68.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird 68.3,...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine exists due to a mix of types in V8. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created HTML page...

DEBIAN-CVE-2019-5878

Use after free in V8 in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

October 8, 2019—KB4520005 (Monthly Rollup)

October 8, 2019—KB4520005 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4516041released September 24, 2019 and addresses the following issues: Addresses an issue with applications and printer drivers that utilize the Window...

October 8, 2019—KB4520007 (Monthly Rollup)

October 8, 2019—KB4520007 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4516069released September 24, 2019 and addresses the following issues: Addresses an issue with applications and printer drivers that utilize the Window...

Foxit PhantomPDF 8.x < 8.3.12 / 9.x < 9.7 Multiple Vulnerabilities

According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 8.x 8.3.12 / 9.x 9.7. It is, therefore affected by multiple vulnerabilities: - An out-of-bounds error exists in the V8 JavaScript engine. An unauthenticated, remot...

Mozilla Firefox ESR < 17.0.10 Multiple Vulnerabilities

Binary data 701239.prm...

Google Chrome V8 Remote Code Execution Vulnerability (CNVD-2019-40080)

Google Chrome is a web browser of Google Google, U.S. V8 is one of the open source JavaScript engine. A remote code execution vulnerability exists in V8 in versions prior to Google Chromium 73.0.3683.103, which can be exploited by remote attackers to execute arbitrary code with the help of a...

chromium-browser: V8 memory corruption in regex

Insufficient data validation in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

chromium-browser: Use-after-free in V8

Use after free in V8 in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

chromium-browser: Out-of-bounds access in V8

Out of bounds memory access in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2019-11760

A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

CVE-2019-11765

A compromised content process could send a message to the parent process that would cause the 'Click to Play' permission prompt to be shown. However, due to lack of validation from the parent process, if the user accepted the permission request an attacker-controlled permission would be granted...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to a read-off error beyond the allocated memory buffer. Exploiting this vulnerability can allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to access sensitive data, compromise its integrity, and cause service failures through a...