14 matches found
SUSE CVE-2013-6625
Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require chil...
SUSE CVE-2014-3169
Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging script execution that occurs before notificatio...
SUSE CVE-2016-1630
The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for remote attackers to bypass the Same Origin Policy via a crafted web site...
webkitgtk: use-after-free in WebCore::ContainerNode::firstChild
A use-after-free vulnerability was found in webkitgtk. An attacker with network access could pass specially crafted HTML files causing an application to halt or crash...
DEBIAN-CVE-2021-45482
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889...
Google Chrome Blink Security Bypass Vulnerability (CNVD-2016-01511)
Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A security vulnerability exists in the 'ContainerNode::parserRemoveChild' function in the WebKit/Source/core/dom/ContainerNode.cpp file of Blink...
UBUNTU-CVE-2016-1630
The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for remote attackers to bypass the Same Origin Policy via a crafted web site...
UBUNTU-CVE-2015-6777
Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedInternal function in WebKit/Source/core/dom/ContainerNode.cpp in the DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via...
chromium-browser: Use-after-free in DOM
Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedInternal function in WebKit/Source/core/dom/ContainerNode.cpp in the DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via...
Google Chrome Blink Same-Origin Policy Bypass Vulnerability (CNVD-2015-06769)
Google Chrome is an open source WEB browser. The 'ContainerNode::parserInsertBefore' function in the core/dom/ContainerNode.cpp file in Blink used by Google Chrome has a security vulnerability that can be exploited by a remote attacker to bypass the same-origin policy, as a program still performs...
chromium-browser: cross-origin bypass in Blink
The ContainerNode::parserInsertBefore function in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 46.0.2490.71, proceeds with a DOM tree insertion in certain cases where a parent node no longer contains a child node, which allows remote attackers to bypass the Same Origin...
Google Chrome Blink Denial of Service Vulnerability (CNVD-2015-05799)
Google Chrome is a WEB-based browser. A vulnerability in the ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in Google Chrome Blink allows remote attackers to construct a malicious WEB page and trick users into parsing it, which can bypass the same-origin policy and execut...
chromium-browser: Cross-origin bypass in DOM
The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not check whether a node is expected, which allows remote attackers to bypass the Same Origin Policy or cause a denial of service DOM tree corruption via a web...
chromium-browser: Cross-origin-bypass in HTML parser
The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in the HTML parser in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy via a crafted HTML document with an IFRAME element...