Subscribe via feed.
Archive for July, 2017

WebKit JSC JSObject::putInlineSlow / JSValue::putToPrimitive XSS

Posted by deepcore under exploit (No Respond)

WebKit JSC JSObject::putInlineSlow and JSValue::putToPrimitive suffer from a universal cross site scripting vulnerability.

WebKit WebCore::Node::nextSibling Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::Node::nextSibling use-after-free vulnerability.

WebKit WebCore::getCachedWrapper Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::getCachedWrapper use-after-free vulnerability.

WebKit WebCore::Node::getFlag Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::Node::getFlag use-after-free vulnerability.

WebKit WebCore::InputType::element Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::InputType::element use-after-free vulnerability.

WebKit WebCore::AccessibilityRenderObject::handleAriaExpandedChanged Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::AccessibilityRenderObject::handleAriaExpandedChanged use-after-free vulnerability.

WebKit WebCore::RenderObject Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a use-after-free vulnerability in WebCore::RenderObject with accessibility enabled.

WebKit WebCore::AccessibilityNodeObject::textUnderElement Use-After-Free

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::AccessibilityNodeObject::textUnderElement use-after-free vulnerability.

WebKit WebCore::RenderSearchField::addSearchResult Heap Buffer Overflow

Posted by deepcore under exploit (No Respond)

WebKit suffers from a WebCore::RenderSearchField::addSearchResult heap buffer overflow vulnerability.

WebKit JSC ArgumentsEliminationPhase::transform Incorrect LoadVarargs Handling

Posted by deepcore under exploit (No Respond)

WebKit JSC suffers from incorrect LoadVarargs handling in ArgumentsEliminationPhase::transform.