'

Vulnerability Component — WebKit

Detail:
WebKit是一款开放源代码的web浏览器引擎。 WebKit是Mac OS X v10.3及以上版本所包含的软件框架(对v10.2.7及以上版本也可通过软件更新获取)。 同时,WebKit也是Mac OS X的Safari网页浏览器的基础。WebKit是一个开源项目,主要由KDE的KHTML修改而來並且包含了一些来自苹果公司的一些组件。

Related Vulnerabilities

SSV ID Name
SSV-97335 WebKit: Info leak in WebAssembly Compilation(CVE-2018-4222)
SSV-97334 WebKit: Use-after-free when resuming generator(CVE-2018-4218)
SSV-97107 WebKit: UXSS via ContainerNode::parserInsertBefore(CVE-2017-2508)
SSV-96894 WebKit: use-after-free in WebCore::FormSubmission::create(CVE-2017-13791)
SSV-96892 WebKit: use-after-free in WebCore::RenderObject::previousSibling(CVE-2017-13798)
SSV-96893 WebKit: use-after-free in WebCore::RenderObject::previousSibling(CVE-2017-13798)
SSV-96891 WebKit: use-after-free in WebCore::DocumentLoader::frameLoader(CVE-2017-13794)
SSV-96890 WebKit: use-after-free in WebCore::Style::TreeResolver::styleForElement(CVE-2017-13802)
SSV-96889 WebKit: out-of-bounds read in WebCore::SVGPatternElement::collectPatternAttributes(CVE-2017-13783)
SSV-96888 WebKit: out-of-bounds read in WebCore::SimpleLineLayout::RunResolver::runForPoint(CVE-2017-13784)
SSV-96887 WebKit: out-of-bounds read in WebCore::RenderText::localCaretRect(CVE-2017-13785)
SSV-96886 WebKit: use-after-free in WebCore::AXObjectCache::performDeferredCacheUpdate(CVE-2017-13795)
SSV-96885 WebKit: use-after-free in WebCore::PositionIterator::decrement(CVE-2017-13797)
SSV-96884 WebKit: use-after-free in WebCore::InputType::element(CVE-2017-13792)
SSV-96883 WebKit: use-after-free in WebCore::TreeScope::documentScope(CVE-2017-13796)
SSV-96314 WebKit: use-after-free in WebCore::AccessibilityNodeObject::textUnderElement(CVE-2017-7048)
SSV-96313 WebKit: use-after-free in WebCore::AccessibilityRenderObject::handleAriaExpandedChanged(CVE-2017-7043)
SSV-96312 WebKit: use-after-free in WebCore::Node::nextSibling(CVE-2017-7039)
SSV-96311 WebKit: heap-buffer-overflow in WebCore::RenderSearchField::addSearchResult(CVE-2017-7049)
SSV-96310 WebKit: use-after-free in WebCore::InputType::element(CVE-2017-7042)
SSV-96309 WebKit: use-after-free in WebCore::RenderObject with accessibility enabled(CVE-2017-7046)
SSV-96307 WebKit: use-after-free in WebCore::Node::getFlag(CVE-2017-7041)
SSV-96306 WebKit: use-after-free in WebCore::getCachedWrapper(CVE-2017-7040)
SSV-96305 WebKit: JSC: Incorrect scope register handling in DFG::ByteCodeParser::flush(InlineStackEntry* inlineStackEntry)
SSV-96304 WebKit: JSC: uninitialized memory reference in arrayProtoFuncSplice
SSV-96302 WebKit: JSC: JSArray::appendMemcpy uninitialized memory copy(CVE-2017-7064)
SSV-96301 WebKit: JSC: Incorrect LoadVarargs handling in ArgumentsEliminationPhase::transform(CVE-2017-7056)
SSV-96299 WebKit: JSC: Stack-Use-After-Free in ObjectPatternNode::appendEntry
SSV-96298 WebKit: JSC: UXSS via JSObject::putInlineSlow and JSValue::putToPrimitive(CVE-2017-7037)
SSV-93150 WebKit: UXSS through HTMLObjectElement::updateWidget(CVE-2017-2493)
SSV-93148 WebKit enqueuePageshowEvent / enqueuePopstateEvent Universal XSS(CVE-2017-2510)
SSV-93147 WebKit: UXSS via Editor::Command::execute(CVE-2017-2504)
SSV-93146 WebKit: UXSS via ContainerNode::parserRemoveChild
SSV-93145 WebKit: JSC: BindingNode::bindValue doesn't increase the scope's reference count(CVE-2017-2505)
SSV-93144 WebKit WebCore::FrameView::scheduleRelayout Use-After-Free(CVE-2017-2514)
SSV-92992 Apple WebKit: Type confusion in RenderBox with accessibility enabled(CVE-2017-2373)
SSV-92974 WebKit: UXSS via operationSpreadGeneric
SSV-92969 Apple WebKit: UXSS via PrototypeMap::createEmptyStructure
SSV-92923 WebKit: UXSS via a synchronous page load(CVE-2017-2480)
SSV-92922 WebKit: UXSS via a focus event and a link element (CVE-2017-2479)
SSV-92921 WebKit: Use-after-free in JSC::B3::Procedure::resetReachability(CVE-2017-2470)
SSV-92920 WebKit: Use-After-Free via Document::adoptNode (CVE-2017-2468)
SSV-92919 WebKit: heap-buffer-overflow in JSC::SymbolTableEntry::isWatchable (CVE-2017-2469)
SSV-92910 WebKit: HTMLInputElement use-after-free (CVE-2017-2454)
SSV-92909 WebKit: use-after-free in RenderLayer(CVE-2017-2455)
SSV-92908 WebKit: Negative-size memmove in HTMLFormElement (CVE-2017-2459)
SSV-92906 WebKit: ComposedTreeIterator::traverseNextInShadowTree use-after-free(CVE-2017-2466)
SSV-92905 WebKit: table use-after-free(CVE-2017-2471)
SSV-92904 WebKit: WebCore::toJS use-after-free(CVE-2017-2476)
SSV-92883 Apple WebKit: UXSS via Frame::setDocument (1)(CVE-2017-2364)
SSV-92882 Apple Webkit: UXSS with JSCallbackData(CVE-2017-2442)
SSV-92881 Apple Webkit: UXSS by accessing a named property from an unloaded window (CVE-2017-2367)
SSV-92880 Apple WebKit: UXSS via disconnectSubframes (CVE-2017-2445)
SSV-92878 WebKit: Type confusion in constructJSReadableStreamDefaultReader(CVE-2017-2457)
SSV-92866 Apple WebKit: HTMLFormElement::reset() use-after free(CVE-2017-2362)
SSV-92772 WebKit 内存破坏漏洞(CVE-2016-4657 )
SSV-61577 WebKit未明内存破坏漏洞
SSV-61579 WebKit未明内存破坏漏洞
SSV-61578 WebKit未明内存破坏漏洞
SSV-61194 WebKit 内存破坏漏洞
SSV-61195 WebKit 释放后重利用远程代码执行漏洞
SSV-60773 WebKit 'addChildNodesToDeletionQueue()'函数释放后重用远程代码执行漏洞
SSV-60772 WebKit 'FrameLoader::checkCompleted()'函数释放后重用远程代码执行漏洞
SSV-60470 WebKit跨站脚本保护绕过漏洞
SSV-60301 WebKit SVG图形未初始化内存信息泄露漏洞(CVE-2012-3650)
SSV-60300 WebKit 沙盒安全限制绕过漏洞(CVE-2012-3697)
SSV-60182 WebKit跨站脚本执行过滤器安全限制绕过漏洞
SSV-12640 WebKit资源装载回调信息泄漏漏洞
SSV-12637 WebKit多个远程代码执行,拒绝服务和信息泄漏漏洞
SSV-12644 WebKit Preflight请求同源策略绕过漏洞
SSV-14333 WebKit 'Document()' Function Remote Information Disclosure Vulnerability
SSV-14332 WebKit XML External Entity Information Disclosure Vulnerability
SSV-12075 Safari 4.0.2 (WebKit Parsing of Floating Point Numbers) BOF PoC
SSV-1915 Apple Webkit非法类型转换远程代码执行漏洞
SSV-1231 Apple WebKit WebCore远程拒绝服务漏洞
京ICP备10040895号 京公网安备 11010502034610号 Copyright @ 404 Team from Knownsec. 简体中文