CVE-2023-25363

A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

CVE-2023-25361

CVE-2023-25361 is a use-after-free in WebKitGTK’s WebCore::RenderLayer::setNextSibling, reported as pre-2.36.8. The vulnerability could allow an attacker to execute arbitrary code on a remote target via crafted web content. The available sources indicate this issue affects WebKitGTK before 2.36.8...

CVE-2023-25363

CVE-2023-25363 is a use-after-free in WebKitGTK (WebCore::RenderLayer::updateDescendantDependentFlags) that, in WebKitGTK before 2.36.8, allows remote code execution. The Mirage Linux/MiracleLinux advisory references CVE-2023-25363 as affected (AXSA/MIRACLE LINUX). The available connected documen...

CVE-2023-25361

A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

CVE-2023-25360

CVE-2023-25360 is a use-after-free vulnerability in WebKitGTK for the WebCore::RenderLayer::renderer path. Affected product is WebKitGTK before version 2.36.8. The issue allows remote code execution if the vulnerable WebKitGTK component is processed or rendered by a client. The MIRACLE/Linus and ...

CVE-2023-25362

CVE-2023-25362 is a use-after-free in WebKitGTK’s WebCore::RenderLayer::repaintBlockSelectionGaps, exploitable remotely via WebKitGTK before version 2.36.8. Affected products reference this flaw (MiracleLinux AXSA:2023-5612, Alibaba/Red Hat advisories). Mitigation noted in sources: upgrade WebKit...

CVE-2023-25358

A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

CVE-2023-25360

A use-after-free vulnerability in WebCore::RenderLayer::renderer in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

CVE-2023-25358

Summary of CVE-2023-25358 (WebKitGTK) : A use-after-free vulnerability in WebCore::RenderLayer::addChild (and related RenderLayer functions) in WebKitGTK before 2.36.8 allows remote code execution. The issue appears in WebKitGTK/WebKitGTK4, affecting the WebKit rendering stack used by GTK-based a...

CVE-2023-25358

A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

PT-2023-9412 · Apple +6 · Webkitgtk +7

Name of the Vulnerable Software and Affected Versions: WebKitGTK versions prior to 2.36.8 WPE WebKit affected versions not specified Description: A use-after-free vulnerability in the WebCore::RenderLayer::repaintBlockSelectionGaps function of the WebKitGTK and WPE WebKit rendering modules allows...

Google Chrome Blink Resource Management Error Vulnerability (CNVD-2019-44526)

Google Chrome is a Web browser from Google, a U.S. company. Blink is a browser layout engine rendering engine jointly developed by Google and Norway's OperaSoftware. A resource management error vulnerability exists in the RenderLayer of Blink in Google Chrome prior to version m12. The vulnerabili...

CVE-2011-2334

Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections...

CVE-2011-2334

Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections...

CVE-2011-2334

A use-after-free vulnerability exists in WebKit within Google Chrome before Blink M12, triggered in RenderLayer when removing elements with reflections. Affected component is Chrome/WebKit/Blink RenderLayer; root cause is use-after-free. Public exploitation status and concrete remediation details...

CVE-2011-2334

Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections...

WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free Exploit

Exploit for multiple platform in category dos / poc htmlvar00005, noframes, diplay: inline; padding-top: 0vw; -webkit-column-count: 41; transition-delay: body::first-letter box-flex-group: -webkit-background-size: contain; -webkit-opacity: 0.716727864979; htmlvar00001, .class1 1vmax; display:...

WebKit WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free

WebKit: Use-after-free in WebCore::RenderLayer::updateDescendantDependentFlags CVE-2018-4317 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on the ASan build of the latest WebKit source on OSX. PoC:...

WebKit - 'WebCore::RenderLayer::updateDescendantDependentFlags' Use-After-Free

htmlvar00005, noframes, diplay: inline; padding-top: 0vw; -webkit-column-count: 41; transition-delay: body::first-letter box-flex-group: -webkit-background-size: contain; -webkit-opacity: 0.716727864979; htmlvar00001, .class1 1vmax; display: contents; left: transform-style: inherit;...

WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free

WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free htmlvar00005, noframes, diplay: inline; padding-top: 0vw; -webkit-column-count: 41; transition-delay: body::first-letter box-flex-group: -webkit-background-size: contain; -webkit-opacity: 0.716727864979; htmlvar00001,...