Описание
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 4:4.3.0-0ubuntu6 |
| hardy | ignored | end of life |
| intrepid | released | 4:4.1.4-0ubuntu1~intrepid1.2 |
| jaunty | released | 4:4.2.2-0ubuntu5.1 |
| karmic | not-affected | 4:4.3.0-0ubuntu6 |
| lucid | not-affected | 4:4.3.0-0ubuntu6 |
| maverick | not-affected | 4:4.3.0-0ubuntu6 |
| natty | not-affected | 4:4.3.0-0ubuntu6 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 4:3.5.10.dfsg.1-2ubuntu5 |
| hardy | released | 4:3.5.10-0ubuntu1~hardy1.2 |
| intrepid | released | 4:3.5.10-0ubuntu6.1 |
| jaunty | released | 4:3.5.10.dfsg.1-1ubuntu8.1 |
| karmic | released | 4:3.5.10.dfsg.1-2ubuntu5 |
| lucid | released | 4:3.5.10.dfsg.1-2ubuntu5 |
| maverick | released | 4:3.5.10.dfsg.1-2ubuntu5 |
| natty | released | 4:3.5.10.dfsg.1-2ubuntu5 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | no webkit |
| devel | not-affected | 4.5.2-0ubuntu5 |
| hardy | not-affected | no webkit |
| intrepid | released | 4.4.3-0ubuntu1.4 |
| jaunty | released | 4.5.0-0ubuntu4.3 |
| karmic | not-affected | 4.5.2-0ubuntu5 |
| lucid | not-affected | 4.5.2-0ubuntu5 |
| maverick | not-affected | 4.5.2-0ubuntu5 |
| natty | not-affected | 4.5.2-0ubuntu5 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.1.12-1ubuntu1 |
| hardy | ignored | end of life |
| intrepid | released | 1.0.1-2ubuntu0.2 |
| jaunty | released | 1.0.1-4ubuntu0.1 |
| karmic | not-affected | 1.1.12-1ubuntu1 |
| lucid | not-affected | 1.1.12-1ubuntu1 |
| maverick | not-affected | 1.1.12-1ubuntu1 |
| natty | not-affected | 1.1.12-1ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iP ...
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.
Уязвимость операционной системы CentOS, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
9.3 Critical
CVSS2