Lucene search
K

2114 matches found

OSV
OSV
added 2018/01/23 12:0 a.m.2 views

UBUNTU-CVE-2018-5094

A heap buffer overflow vulnerability may occur in WebAssembly when "shrinkElements" is called followed by garbage collection on memory that is now uninitialized. This results in a potentially exploitable crash. This vulnerability affects Firefox 58...

7.5CVSS7.4AI score0.15444EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/01/23 12:0 a.m.18 views

CVE-2018-5094

A heap buffer overflow vulnerability may occur in WebAssembly when "shrinkElements" is called followed by garbage collection on memory that is now uninitialized. This results in a potentially exploitable crash. This vulnerability affects Firefox 58...

7.5CVSS7.3AI score0.15444EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/01/23 12:0 a.m.610 views

KLA11184 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause a denial of service, spoof user interface, obtain sensitive information, execute arbitrary code, perform cross-site scripting attacks, bypass...

10CVSS10AI score0.20024EPSS
Exploits0References6
OSV
OSV
added 2018/01/23 12:0 a.m.2 views

UBUNTU-CVE-2018-5093

A heap buffer overflow vulnerability may occur in WebAssembly during Memory/Table resizing, resulting in a potentially exploitable crash. This vulnerability affects Firefox 58...

7.5CVSS7.4AI score0.20024EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/12/18 7:10 a.m.7 views

chromium-browser: uxss in v8

Inappropriate implementation in V8 WebAssembly JS bindings in Google Chrome prior to 63.0.3239.108 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

6.1CVSS7.5AI score0.01142EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2017/12/15 12:32 p.m.27 views

CVE-2017-15429

Inappropriate implementation in V8 WebAssembly JS bindings in Google Chrome prior to 63.0.3239.108 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

8.8CVSS2.4AI score0.01142EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/14 12:0 a.m.39 views

openSUSE Security Update : chromium (openSUSE-2017-1349)

This update to Chromium 63.0.3239.84 fixes the following security issues : - CVE-2017-15408: Heap buffer overflow in PDFium - CVE-2017-15409: Out of bounds write in Skia - CVE-2017-15410: Use after free in PDFium - CVE-2017-15411: Use after free in PDFium - CVE-2017-15412: Use after free in libXM...

8.8CVSS6.8AI score0.02963EPSS
Exploits1References19
Tenable Nessus
Tenable Nessus
added 2017/12/14 12:0 a.m.54 views

openSUSE Security Update : binutils (openSUSE-2017-1330)

GNU binutil was updated to the 2.29.1 release, bringing various new features, fixing a lot of bugs and security issues. Following security issues are being addressed by this release : - 18750 bsc1030296 CVE-2014-9939 - 20891 bsc1030585 CVE-2017-7225 - 20892 bsc1030588 CVE-2017-7224 - 20898...

9.8CVSS6.5AI score0.08544EPSS
Exploits9References141
ArchLinux
ArchLinux
added 2017/12/13 12:0 a.m.53 views

[ASA-201712-6] qt5-webengine: multiple issues

Arch Linux Security Advisory ASA-201712-6 ========================================= Severity: Critical Date : 2017-12-13 CVE-ID : CVE-2017-15386 CVE-2017-15387 CVE-2017-15388 CVE-2017-15390 CVE-2017-15392 CVE-2017-15394 CVE-2017-5124 CVE-2017-5126 CVE-2017-5127 CVE-2017-5128 CVE-2017-5129...

8.8CVSS0.05245EPSS
Exploits6References29
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/08 12:15 p.m.336 views

Security update for chromium (important)

This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-5124: UXSS with MHTML - CVE-2017-5125: Heap overflow in Skia - CVE-2017-5126: Use after free in PDFium - CVE-2017-5127: Use after free in PDFium - CVE-2017-5128: Heap overflow in WebGL - CVE-2017-5129: Use after...

8.8AI score0.05245EPSS
Exploits7References5
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/08 12:15 p.m.89 views

Security update for chromium (important)

This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-15408: Heap buffer overflow in PDFium - CVE-2017-15409: Out of bounds write in Skia - CVE-2017-15410: Use after free in PDFium - CVE-2017-15411: Use after free in PDFium - CVE-2017-15412: Use after free in libXML...

0.4AI score0.02963EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2017/12/07 7:30 p.m.7 views

chromium-browser: type confusion in webassembly

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01661EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2017/12/07 10:20 a.m.23 views

CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS2.9AI score0.01661EPSS
Exploits0References2
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2017/12/06 12:0 a.m.44 views

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 63 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 63.0.3239.84 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming...

8.8CVSS9AI score0.02963EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/12/01 12:0 a.m.82 views

SUSE SLED12 / SLES12 Security Update : binutils (SUSE-SU-2017:3170-1)

GNU binutil was updated to the 2.29.1 release, bringing various new features, fixing a lot of bugs and security issues. Following security issues are being addressed by this release : - 18750 bsc1030296 CVE-2014-9939 - 20891 bsc1030585 CVE-2017-7225 - 20892 bsc1030588 CVE-2017-7224 - 20898...

9.8CVSS6.6AI score0.08544EPSS
Exploits9References190
CNVD
CNVD
added 2017/11/08 12:0 a.m.2 views

chromium-browser webassembly component stack manipulation vulnerability

chromium-browser is an open source web browser project started by Google to provide source code for the proprietary Google Chrome browser. A stack manipulation vulnerability exists in the chromium-browser webassembly component. An attacker could exploit the vulnerability to execute arbitrary code...

8.8CVSS7.4AI score0.01588EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/11/07 12:0 a.m.33 views

Debian DSA-4020-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. In addition, this message serves as an annoucment that security support for chromium in the oldstable release jessie, Debian 8, is now discontinued. Debian 8 chromium users that desire continued security updates are strongl...

8.8CVSS6.5AI score0.05245EPSS
Exploits6References42
OpenVAS
OpenVAS
added 2017/11/04 12:0 a.m.34 views

Debian: Security Advisory (DSA-4020-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.05245EPSS
Exploits6References3
ossfuzz
ossfuzz
added 2017/11/01 8:41 a.m.18 views

chakra: Crash in Js::WebAssembly::EntryQueryResponse

Project: https://github.com/Microsoft/ChakraCore.git Detailed report: https://oss-fuzz.com/testcase?key=5816764773433344 Project: chakra Fuzzer: jsfuzzer Job Type: asanchakra Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x01873fff8003 Crash State: Js::WebAssembly::EntryQueryResponse...

Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/10/30 12:0 a.m.37 views

openSUSE Security Update : chromium (openSUSE-2017-1221)

This update to Chromium 62.0.3202.75 fixes the following security issues : - CVE-2017-5124: UXSS with MHTML - CVE-2017-5125: Heap overflow in Skia - CVE-2017-5126: Use after free in PDFium - CVE-2017-5127: Use after free in PDFium - CVE-2017-5128: Heap overflow in WebGL - CVE-2017-5129: Use after...

8.8CVSS6.6AI score0.05245EPSS
Exploits6References23
Rows per page
Query Builder