Lucene search
Ubuntu.comUB:CVE-2010-0659HistoryFeb 18, 2010 - 12:00 a.m.
CVE-2010-0659
2010-02-1800:00:00
ubuntu.com
ubuntu.com
13
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.085
Percentile
94.5%
The image decoder in WebKit before r52833, as used in Google Chrome before
4.0.249.78, does not properly handle a failure of memory allocation, which
allows remote attackers to execute arbitrary code in the Chrome sandbox via
a malformed GIF file that specifies a large size.
Bugs
- <https://bugs.webkit.org/show_bug.cgi?id=33231>
- <http://code.google.com/p/chromium/issues/detail?id=28566>
Notes
| Author | Note |
|---|---|
| jdstrand | qt4-x11 unmaintained upstream (see README.webkit for details) webkit is a fork of khtml from kdelibs. kdelibs5 is farther from it, while qt4-x11 attempts to unify khtml and webkit. |
| mdeslaur | webkitkde is a wrapper around qt4-x11’s webkit. this is chromium-specific |
Related
prion
prion
Design/Logic Flaw
2010-02-18 18:00:00
debiancve
debiancve
CVE-2010-0659
2010-02-18 18:00:00
nvd
nvd
CVE-2010-0659
2010-02-18 18:00:00
cvelist
cvelist
CVE-2010-0659
2010-02-18 17:19:00
cve
cve
CVE-2010-0659
2010-02-18 18:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities - Windows
2010-02-22 00:00:00
Google Chrome Multiple Vulnerabilities - (Windows)
2010-02-22 00:00:00
nessus
nessus
Google Chrome < 4.0.249.78 Multiple Vulnerabilities
2010-01-26 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2014-06-13 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2011:0024-1)
2011-05-05 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.085
Percentile
94.5%
Related for UB:CVE-2010-0659