Информационная безопасность
[RU] switch to English


Повреждения памяти в Konqueror
Опубликовано:2 ноября 2012 г.
Источник:
SecurityVulns ID:12692
Тип:клиент
Уровень опасности:
5/10
Описание:Несколько различных повреждений памяти.
Затронутые продукты:KDE : Konqueror 4.7
CVE:CVE-2012-4515 (Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.)
 CVE-2012-4514 (rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part.")
 CVE-2012-4513 (khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote attackers to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.)
 CVE-2012-4512
Оригинальный текстdocumentTim Brown, Nth Dimension Security Advisory (NDSA20121010) (02.11.2012)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород