5 matches found
WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData()' Buffer Overflow (PoC)
Exploit Title: WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData' Buffer Overflow PoC Date: 2018-08-15 Exploit Author: PeregrineX Vendor Homepage: https://webkitgtk.org/ & https://webkit.org/wpe/ Software Link: https://webkitgtk.org/releases/ & https://wpewebkit.org/releases/ Version: RefPtr...
WebKitGTK+ and WPE WebKit Integer Overflow Vulnerability
WebKitGTK+ is a full-featured port of the WebKit rendering engine.WPE WebKit is a port of WebKit optimized for embedded platforms.WebKit is a typography engine used to allow web browsers to draw web pages. An integer overflow vulnerability exists in the getImageData function in the ImageBufferCai...
Integer overflow
The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to version 2.20.1, is vulnerable to a heap-based buffer overflow triggered by an integer overflow, which...
UBUNTU-CVE-2018-12293
The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to version 2.20.1, is vulnerable to a heap-based buffer overflow triggered by an integer overflow, which...
Mozilla Firefox images information leak
By using getImageData with redirections it's possiblt to obtain crossite access to images...