Loading...
Creditee: miaubiz
| Disc. Date | OSVDB ID | CVEID | Title |
|---|---|---|---|
| 2013-05-16 | 93488 | 2013-1010 | WebKit Unspecified Memory Corruption (2013-1010) |
| 2013-04-02 | 91879 | 2013-0796 | Mozilla Multiple Products WebGL Rendering Mesa Graphics Driver on Linux Invalid Free Arbtirary Code Execution |
| 2013-01-08 | 89008 | 2013-0768 | Mozilla Multiple Product Canvas Unspecified Stack Overflow |
| 2012-11-26 | 87884 | 2012-5133 | WebKit SVG Filter feImage Element Self-reference Processing Use-after-free |
| 2012-11-20 | 87601 | 2012-5835 | Mozilla Multiple Product webgl bufferdata Handling Overflow |
| 2012-11-20 | 87599 | 2012-5838 | Mozilla Multiple Product copyTexImage2D Call Image Dimension Handling Memory Corruption |
| 2012-11-20 | 87598 | 2012-5830 | Mozilla Multiple Product for OS X HTML File Handling Use-after-free Arbitrary Code Execution |
| 2012-11-20 | 87581 | 2012-5833 | Mozilla Multiple Product texImage2D Call Handling Memory Corruption |
| 2012-11-06 | 87075 | 2012-5116 | Google Chrome SVG Filter Handling Use-after-free Arbitrary Code Execution |
| 2012-11-06 | 87074 | 2012-5118 | Google Chrome for Mac GPU Command Buffer Integer Boundary Check Weakness |
| 2012-11-06 | 87084 | 2012-5115 | Google Chrome for Mac Graphics Drivers Wild Write Issue |
| 2012-11-02 | 88109 | 2012-5129 | Mesa main/uniform_query.cpp validate_uniform_parameters() Function Uniform Value Handling Remote Overflow |
| 2012-10-09 | 86102 | 2012-3990 | Mozilla Multiple Product IME State Manager nsIContent::GetNameSpaceID() Function Use-after-free Arbitrary Code Execution |
| 2012-09-25 | 85769 | 2012-2896 | Google Chrome for Mac GPU SafeMultiply / SafeAdd Functions Integer Overflows |
| 2012-09-12 | 85414 | 2012-3602 | WebKit Unspecified Memory Corruption (2012-3602) |
| 2012-08-30 | 85030 | 2012-2865 | WebKit RenderBlock::LineBreaker::nextLineBreak Line Break Handling Out-of-bounds Read Issue |
| 2012-08-30 | 85033 | 2012-2868 | Google Chrome ResourceResponse.cpp Workers / XHR Handling Race Condition Use-after-free |
| 2012-08-28 | 84993 | 2012-3968 | Mozilla Multiple Product WebGL Shader Use-after-free Remote Code Execution |
| 2012-08-28 | 84994 | 2012-3967 | Mozilla Multiple Product for Linux Mesa Drivers >16 Sampler Uniform Handling Memory Corruption |
| 2012-08-21 | 85771 | 2012-2888 | WebKit SVG Text Reference Handling Use-after-free Issue |
| 2012-08-14 | 84921 | 2012-2864 | Mesa src/glsl/link_uniforms.cpp visit_field() Function Sample Shade Information Handling Overflow |
| 2012-08-02 | 85031 | 2012-2866 | WebKit Input / Textarea Element display:run-in Handling Bad Cast Memory Corruption |
| 2012-07-25 | 84145 | 2012-3594 | WebKit Website Handling Unspecified Memory Corruption (2012-3594) |
| 2012-07-25 | 84176 | 2012-3642 | WebKit Website Handling Unspecified Memory Corruption (2012-3642) |
| 2012-07-25 | 84177 | 2012-3644 | WebKit Website Handling Unspecified Memory Corruption (2012-3644) |
| 2012-06-27 | 83241 | 2012-2830 | Google Chrome V8 Bindings Array Value Setting Bad Cast Arbitrary Pointer Dereference Issue |
| 2012-06-26 | 83245 | 2012-2823 | WebKit GraphicsContext::restore Function SVG Resource Handling Use-after-free Issue |
| 2012-06-20 | 83727 | 2012-2843 | WebKit Layout Height Tracking Use-after-free Issue |
| 2012-06-19 | 83734 | 2012-2842 | WebKit CounterNode::insertAfter Function Counter Handling Use-after-free Issue |
| 2012-06-17 | 83257 | 2012-2831 | WebKit SVGDocumentExtensions::removeAllElementReferencesForTarget Function SVG Reference Handling Use-after-free Issue |
| 2012-05-29 | 83256 | 2012-2829 | WebKit RenderObject::setStyle Function First Letter Handling Use-after-free Issue |
| 2012-05-25 | 83238 | 2012-2817 | WebKit RenderTableSection::paintCell Function Table Section Handling Use-after-free Issue |
| 2012-05-25 | 83242 | 2012-2818 | WebKit RenderObject::container Function Counter Layout Handling Use-after-free Issue |
| 2012-05-22 | 83246 | 2012-2824 | WebKit RenderSVGContainer::paint Function SVG Painting Use-after-free Issue |
| 2012-05-16 | 82242 | 2011-3105 | WebKit RenderTableCell::layout Function First-letter Handling Use-after-free Issue |
| 2012-05-15 | 81956 | 2011-3094 | HarfBuzz tibetan_form Macro Tibetan Handling Out-of-bounds Read Issue |
| 2012-04-12 | 81955 | 2011-3093 | WebKit WebCore::GlyphPage::fill Function Glyph Handling Out-of-bounds Read Issue |
| 2012-04-10 | 81647 | 2011-3081 | WebKit RenderBlock::markSiblingsWithFloatsForLayout Intruding Float Handling Use-after-free Issue |
| 2012-04-09 | 81951 | 2011-3089 | WebKit WebCore::Element::recalcStyle Function Table Handling Use-after-free Issue |
| 2012-04-05 | 81038 | 2011-3068 | Google Chrome Use-after-free Run-in Handling Unspecified Remote Issue |
| 2012-04-05 | 81046 | 2011-3076 | Google Chrome Use-after-free Focus Handling Unspecified Remote Issue |
| 2012-04-05 | 81036 | 2011-3066 | Google Chrome Skia Clipping Out-of-bounds Read Remote DoS |
| 2012-04-05 | 81039 | 2011-3069 | Google Chrome Use-after-free Line Box Handling Unspecified Remote Issue |
| 2012-04-05 | 81045 | 2011-3075 | Google Chrome Use-after-free Applying Style Command Handling Unspecified Remote Issue |
| 2012-04-02 | 81643 | 2011-3078 | WebKit RenderBlock::clearFloats Intruding Float Handling Use-after-free Issue |
| 2012-03-09 | 80291 | 2011-3053 | WebKit RenderBlock::splitBlocks Function Block Splitting Use-after-free Issue |
| 2012-03-09 | 80738 | 2011-3060 | WebKit Text Fragment Handling Out-of-bounds Read Issue |
| 2012-03-08 | 79913 | 2012-0591 | WebKit Website Handling Unspecified Memory Corruption (2012-0591) |
| 2012-03-08 | 79919 | 2012-0597 | WebKit Website Handling Unspecified Memory Corruption (2012-0597) |
| 2012-03-08 | 79922 | 2012-0600 | WebKit Website Handling Unspecified Memory Corruption (2012-0600) |
| 2012-03-08 | 79932 | 2012-0610 | WebKit Website Handling Unspecified Memory Corruption (2012-0610) |
| 2012-03-08 | 79936 | 2012-0614 | WebKit Unspecified Memory Corruption (2012-0614) |
| 2012-03-08 | 79938 | 2012-0616 | WebKit Unspecified Memory Corruption (2012-0616) |
| 2012-03-08 | 79950 | 2012-0628 | WebKit Unspecified Memory Corruption (2012-0628) |
| 2012-03-05 | 79799 | 2011-3040 | WebKit 'TextIterator::handleTextNodeFirstLetter' first-letter Selector Out-of-bounds Read Memory Disclosure |
| 2012-03-04 | 79797 | 2011-3038 | WebKit Line Box Cloning Multi-column Layout Handling Use-after-free Arbitrary Code Execution |
| 2012-03-04 | 79798 | 2011-3039 | Google Chrome Use-after-free Quote Handling Unspecified Remote Code Execution |
| 2012-03-04 | 79800 | 2011-3041 | Google Chrome Use-after-free Class Attribute Handling Unspecified Remote Code Execution |
| 2012-03-04 | 79801 | 2011-3042 | Google Chrome Use-after-free Table Selection Handling Unspecified Remote Code Execution |
| 2012-03-04 | 79802 | 2011-3043 | Google Chrome Use-after-free Flexbox with Floats Handling Unspecified Remote Code Execution |
| 2012-02-28 | 79796 | 2011-3037 | WebKit RenderBlock::addChildToAnonymousColumnBlocks Anonymous Column Block Handling Bad Cast Memory Corruption |
| 2012-02-22 | 80288 | 2011-3050 | WebKit RenderBlock::layoutInlineChildren Function :first-letter Pseudo-element Handling Use-after-free Issue |
| 2012-02-19 | 92083 | 2011-3037 | WebKit RenderBlock::splitTablePartsAroundChild Nested Table Splitting Bad Cast Memory Corruption |
| 2012-02-17 | 92082 | 2011-3037 | WebKit Table Splitting Child Handling Bad Cast Memory Corruption |
| 2012-02-15 | 79284 | 2011-3016 | WebKit WebCore/rendering/RenderCounter.cpp Counter Nodes Handling Use-after-free |
| 2012-02-15 | 79285 | 2011-3017 | Google Chrome WebDatabase Worker Access Frame Closing Race Condition Use-after-free Issue |
| 2012-02-13 | 79795 | 2011-3036 | WebKit Line Box Handling Bad Cast Memory Corruption |
| 2012-02-07 | 79295 | 2011-3027 | WebKit RenderInline::splitFlow Column Style Handling Memory Corruption |
| 2011-12-20 | 84174 | 2012-3640 | WebKit 'RenderTable::computeLogicalWidth' Function Use-after-free Issue |
| 2011-12-13 | 77720 | 2011-3904 | WebKit Mixed Direction Text Runs Handling Use-after-free Issue |
| 2011-10-25 | 76556 | 2011-3885 | WebKit Custom Font Registration Handling Use-after-free Remote Code Execution |
| 2011-10-25 | 90450 | 2011-3885 | WebKit RenderBlock::updateFirstLetter Style Sheet Handling Use-after-free Remote Code Execution |
| 2011-10-25 | 90449 | 2011-3885 | WebKit Unspecified Style Sheet Handling Use-after-free Remote Code Execution |
| 2011-10-25 | 90448 | 2011-3885 | WebKit RenderObjectChildList::updateBeforeAfterContent Style Sheet Handling Use-after-free |
| 2011-10-25 | 90447 | 2011-3885 | WebKit RenderObject::addChild Table Cell Handling Use-after-free Remote Code Execution |
| 2011-10-25 | 90446 | 2011-3885 | WebKit :before Content Location Style Sheet Handling Use-after-free Remote Code Execution |
| 2011-08-22 | 74692 | 2011-2823 | Google Chrome Use-after-free Unspecified Line Box Handling Issue |
| 2011-08-22 | 74693 | 2011-2824 | Google Chrome Use-after-free Unspecified Counter Node Handling Issue |
| 2011-08-22 | 74698 | 2011-2827 | Google Chrome Use-after-free Unspecified Text Searching Issue |
| 2011-08-22 | 74694 | 2011-2825 | Google Chrome Use-after-free Unspecified Custom Font Handling Issue |
| 2011-08-01 | 90386 | Google Chrome LevelDB Compaction Work Destruction Use-after-free Arbitrary Code Execution | |
| 2011-06-28 | 73511 | 2011-2351 | WebKit SVG Use Element Shadow Building Document Children Removal Use-after-free |
| 2011-06-28 | 73510 | 2011-2350 | WebKit HTML Parser ContainerNode::parserAddChild Use-after-free |
| 2011-06-28 | 73506 | 2011-2346 | Google Chrome SVG Font Handling Unspecified Use-after-free Issue |
| 2011-06-28 | 73507 | 2011-2347 | Google Chrome CSS Parsing Memory Corruption |
| 2011-06-28 | 73509 | 2011-2349 | Google Chrome Text Selection Unspecified Use-after-free Issue |
| 2011-06-07 | 72778 | 2011-1808 | Google Chrome Float Handling Use-after-free Unspecified Issue |
| 2011-06-07 | 72788 | 2011-1818 | Google Chrome Image Loader Use-after-free Unspecified Issue |
| 2011-04-27 | 72201 | 2011-1436 | Google Chrome Long Option Selecting X Window System Interaction DoS |
| 2011-04-27 | 72202 | 2011-1437 | Google Chrome Float Rendering Unspecified Overflow |
| 2011-04-27 | 72212 | 2011-1447 | Google Chrome Drop-Down List Handling Unspecified Stale Pointer DoS |
| 2011-03-08 | 72480 | 2011-1192 | Google Chrome for Linux Unicode Range Handling Out-of-Bounds Read DoS |
| 2011-03-08 | 72483 | 2011-1195 | Google Chrome Document Script Lifetime Handling Use-after-free Remote Code Execution |
| 2011-03-08 | 72488 | 2011-1200 | Google Chrome Text Rendering Bad Cast Remote Code Execution |
| 2011-03-01 | 72273 | 2011-1120 | Google Chrome WebGL drawElements Arbitrary Memory Read Issue |
| 2011-02-09 | 70981 | 2011-0982 | Google Chrome SVG Font Face Handling Use-after-free DoS |
| 2010-12-24 | 70461 | 2011-0478 2011-0135 |
WebKit SVG Use Element Removal Handling Use-after-free |
| 2010-12-02 | 69669 | 2010-4490 | Google Chrome Video Content Indexing Error Remote DoS |
