4 matches found
Apple WebKit: HTMLFormElement::reset() use-after free(CVE-2017-2362)
PoC: function go output.value = "aaa"; output.appendChildinserteddiv; document.getElementById"output".addEventListener'DOMSubtreeModified', function forvar i=0; i foo Analysis: The bug is in HTMLFormElement::reset function, specifically in this part: for auto& associatedElement :...
Fedora Update for webkitgtk4 FEDORA-2017-0beb752b6e
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for webkitgtk4 FEDORA-2017-b1abcbe695
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-2362
CVE-2017-2362 affects WebKit in Apple devices: iOS before 10.2.1, Safari before 10.0.3, and tvOS before 10.1.1. The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted web site, involving memory corruption and application crash. The root cause is des...