Описание
Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via an SVG animation element, related to SVG set objects, SVG marker elements, the targetElement attribute, and unspecified "caches."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | already fixed |
| hardy | not-affected | code not present |
| intrepid | not-affected | code not present |
| jaunty | not-affected | already fixed |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | code not present |
| hardy | released | 4:3.5.10-0ubuntu1~hardy1.1 |
| intrepid | not-affected | code not present |
| jaunty | not-affected | code not present |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | no webkit |
| devel | not-affected | 4.5.2-0ubuntu5 |
| hardy | not-affected | no webkit |
| intrepid | not-affected | code not present |
| jaunty | not-affected | 4.5.0-0ubuntu4.2 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.1.12-1ubuntu1 |
| hardy | not-affected | code not present |
| intrepid | not-affected | 1.0.1-2ubuntu0.1 |
| jaunty | not-affected | 1.0.1-4 |
| upstream | needs-triage |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via an SVG animation element, related to SVG set objects, SVG marker elements, the targetElement attribute, and unspecified "caches."
Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via an SVG animation element, related to SVG set objects, SVG marker elements, the targetElement attribute, and unspecified "caches."
Use-after-free vulnerability in the garbage-collection implementation ...
Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit in Apple Safari before 4.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via an SVG animation element, related to SVG set objects, SVG marker elements, the targetElement attribute, and unspecified "caches."
9.3 Critical
CVSS2