24 matches found
Astra Linux - уязвимость в firefox
Mozilla developers reported memory safety bugs in Firefox 91. Some of these bugs exhibited signs of memory corruption, and we assume that with sufficient effort, some of these bugs could have been exploited to execute arbitrary code. This vulnerability affects versions of Firefox prior to 92...
Astra Linux - уязвимость в chromium
Before version 91.0.4472.77, using free after in WebRTC in Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted SCTP packet...
Astra Linux - уязвимость в chromium
Before version 91.0.4472.101, using the "after free" mechanism in the Network service in Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...
Astra Linux - уязвимость в chromium
Before version 91.0.4472.101, using “After Free” in Google Chrome extensions allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption through a crafted HTML page...
Astra Linux - уязвимость в chromium
Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Astra Linux - уязвимость в firefox, thunderbird
Failure to correctly record the location of live pointers across wasm instance calls resulted in a garbage collection occurring within the call without tracing those live pointers. This could have led to a use-after-free condition, causing a potentially exploitable crash. This vulnerability affec...
EUVD-2021-16442
Malware in sbrugna...
EUVD-2021-16446
Malware in sbrugna...
SUSE CVE-2021-30544
Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
SUSE CVE-2021-30559
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
SUSE CVE-2021-30562
Use after free in WebSerial in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
SUSE CVE-2021-30563
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
SUSE CVE-2021-30564
Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Mozilla Firefox Memory Corruption Vulnerability (CNVD-2021-70107)
Mozilla Firefox is an open source Web browser from the Mozilla Foundation, U.S. A memory corruption vulnerability exists in version 91 of Mozilla Firefox, which stems from a boundary error when the product processes HTML content. A remote attacker could use the vulnerability to trick a victim int...
Mozilla Thunderbird Security Advisories (MFSA2021-35, MFSA2021-36) - Mac OS X
This host is missing a security update according to Mozilla. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird"...
Mozilla: Race condition when resolving DNS names could have led to memory corruption
A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. Note: This issue only affected Linux operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and...
Mozilla: Race condition when resolving DNS names could have led to memory corruption
A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. Note: This issue only affected Linux operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and...
DEBIAN-CVE-2021-30563
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Google Chrome Post-release Reuse Vulnerability (CNVD-2021-62172)
Chrome is a web browsing tool developed by Google, and a post-release reuse vulnerability exists in V8 in versions prior to Google Chrome 91.0.4472.164. An attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash...
chromium-browser: Out of bounds write in ANGLE
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...