Описание
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 9.23-20070809.6dapper1 |
| devel | not-affected | |
| edgy | released | 9.23-20070809.6edgy1 |
| feisty | released | 9.23-20070809.6feisty1 |
| upstream | released | 9.22 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
5 Medium
CVSS2