Описание
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4944
- http://osvdb.org/45946
- http://security.gentoo.org/glsa/glsa-200708-17.xml
- http://www.opera.com/docs/changelogs/freebsd/922
- http://www.opera.com/docs/changelogs/linux/922
- http://www.opera.com/docs/changelogs/solaris/922
- http://www.opera.com/support/search/view/861
EPSS
CVE ID
Связанные уязвимости
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
EPSS