78 matches found
Amazon Linux 2 : firefox (ALASFIREFOX-2024-029)
The version of firefox installed on the remote host is prior to 115.15.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2024-029 advisory. 2024-09-26: CVE-2024-7652 was added to this advisory. An error in the ECMA-262 specification relating to Async...
Mozilla Thunderbird < 115.15
The version of Thunderbird installed on the remote Windows host is prior to 115.15. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-44 advisory. - The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the...
Mozilla Firefox < 130.0
The version of Firefox installed on the remote Windows host is prior to 130.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-39 advisory. - Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that...
Mozilla Firefox ESR < 115.15
The version of Firefox ESR installed on the remote Windows host is prior to 115.15. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-41 advisory. - The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the...
Security Vulnerabilities fixed in Thunderbird 115.15 — Mozilla
A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the with environment. Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried t...
SUSE CVE-2009-1687
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption a...
Debian DSA-1988-1 : qt4-x11 - several vulnerabilities
Several vulnerabilities have been discovered in qt4-x11, a cross-platform C++ application framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, as used in qt4-x11, allows remote...
Debian DSA-1867-1 : kdelibs - several vulnerabilities
Several security issues have been discovered in kdelibs, core libraries from the official KDE release. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1690 It was discovered that there is a use-after-free flaw in handling certain DOM event handlers...
Debian Security Advisory DSA 1868-1 (kde4libs)
The remote host is missing an update to kde4libs announced via advisory DSA 1868-1. OpenVAS Vulnerability Test $Id: deb18681.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1868-1 kde4libs Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1867-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-1868-1 kde4libs - several vulnerabilities
Bulletin has no description...
kdelibs security update
CentOS Errata and Security Advisory CESA-2009:1127 Updated kdelibs packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The kdelibs packages provide...
kdelibs: Integer overflow in KJS JavaScript garbage collector
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption a...
CVE-2009-1687
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption a...
CVE-2009-1687
Removed by vendor...
CVE-2009-1687
The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption a...
Firefox JavaScript garbage collection crash
The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service garbage collector crash and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for...
Firefox < 2.0.0.14 Javascript Garbage Collector DoS
The installed version of Firefox contains a stability problem that could result in a crash during JavaScript garbage collection. Although there are no examples of this extending beyond a crash, similar issues in the past have been shown to allow arbitrary code execution. C Tenable Network Securit...