:: Deepquest ::

CommuniGatePro version 6.1.16 suffers from multiple stored cross site scripting vulnerabilities.

CSC Cart version 4.6.2 suffers from a remote shell upload vulnerability.

WebKit suffers from a use-after-free vulnerability in WebCore::RenderObject::previousSibling.

WebKit suffers from a use-after-free vulnerability in WebCore::FormSubmission::create.

Microsoft Edge Chakra JIT BailOutOnTaggedValue bailouts can be generated for constant values.

Microsoft Edge Chakra JIT GlobOpt::OptTagChecks must consider IsLoopPrePass properly.

Microsoft Edge Chakra JIT Inline::InlineCallApplyTarget_Shared does not return the return instruction.

Microsoft Edge Chakra JIT suffers from an incorrect function declaration scope.

Linux mincore() discloses uninitialized kernel heap pages. When __walk_page_range() is used on a VM_HUGETLB VMA, callbacks from the mm_walk structure are only invoked for present pages. However, do_mincore() assumes that it will always get callbacks for all pages in the range passed to walk_page_range(), and when this assumption is violated, sys_mincore() copies uninitialized memory from […]

ALLPlayer 7.5 – Local Buffer Overflow (SEH Unicode)