WebKit suffers from a use-after-free vulnerability when resuming generator.
9d4a97ee75f86513d40f422b4b1daf5e748cac6f104d893f1a126d2c47965dbb
WebRTC VP9 missing frame processing suffers from an out-of-bounds memory access vulnerability.
292e0a13ad4f20306be1024235446c468656ee86c0c2776bf4968f588f1a3396
WebRTC VP9 frame processing a suffers from an out-of-bounds memory access vulnerability.
35270133154a21aa89000f39a6517d45b12578629462ad36eeb0e371dbc2eada
Samsung Galaxy S7 Edge suffers from an OMACP WbXml string extension processing overflow vulnerability.
307b84753200201a99532b1e82caa0fe6cf50e88e77c62e1a9a31d3768ba87c4
Adobe Flash suffers from a blur filtering out of bounds write vulnerability.
db9e4024283035562e2b5eed3fcb41ae9c42cc358c5573aefabdac9a96e2a762
Adobe Flash suffers from an image inflation information disclosure vulnerability.
f493149efdecbbb22f1232ce036cb91ea06d22c82a1a6023823696fbeaf4aa79
Adobe Flash suffers from a sound playing overflow.
121d28c815ac4c390f122974863648dbf5ab9bc6364b3683c8771981c77849e7
Adobe Flash suffers from a slab rendering overflow.
af3c64e998a4ba846e3dd28e780e824c4906f8f0531d6a873cc5c30f0abc8224
When a WebAssembly binary is parsed in ModuleParser::parse, it is expected to contain certain sections in a certain order, but can also contain custom sections that can appear anywhere in the binary. The ordering check validateOrder() does not adequately check that sections are in the correct order when a binary contains custom sections.
15351af9cc68683eec7e8a50927fc26e0ef2b26e642ed477293a4452012a2165
There is a directory traversal issue in the Telegram client for Android. The method saveFile in MediaController.java saves a file to external memory based on an optional name that is not filtered. The name is provided by the remote peer when sending a document or music file.
7ffd15f66d899cf5ad6ff6674833eb1870b4935ff336fb675f5220f416be335f
There is a directory traversal issue in attachment downloads in Outlook for Android. There is no path sanitization on the attachment filename in the app. If the email account is a Hotmail account, this will be sanitized by the server, but for other accounts it will not be. This allows a file to be written anywhere on the filesystem that the Outlook app can access when an attached image is viewed in the Outlook app.
bb3c8a7504d6e8c404b476e897caa56de42f921ba832cc4711f8ae78d2e13e4a
There is a directory traversal issue in attachment downloads in Gmail. For non-gmail accounts, there is no path sanitization on the attachment filename in the email, so when attachments are downloaded, a file with any name and any contents can be written to anywhere on the filesystem that the Gmail app can access.
acde40f4552aa5149be44a28077696e55fd9ef012ef17e6a02fc5ba02d2dce2c
Adobe Flash suffers from an out-of-bounds read in applyToRange.
5e0bd97867ee024b64d5b21e7b16d1b5b79eb64bc8157ffbfb7124ffb02f80c2
Adobe Flash suffers from an out-of-bounds write vulnerability in MP4 Edge Processing.
6a0ec7b291326f89c01175887700ac01309acd9de42118c3db6c61b84cbe77fc
Adobe Flash suffers from an out-of-bounds memory read vulnerability in MP4 parsing.
f7d793f8cf0aa2a5d67b77d14544b392ce57bd7068e9f531d5568ffdd3041d83
The included proof of concept file causes the traits of an ActionScript object to be accessed out of bounds in Adobe Flash. This can probably lead to exploitable type confusion.
3405d594903c387601f7c35a33eb5e51b9377962f2e626207f38421835a61d78
Microsoft Edge suffers from an out-of-bounds access vulnerability when fetching source.
90333c9b80c4a525c88f900f5a40bd465f51ad669c4eb1250701f102f0bcbe41
Google Chrome suffers from an out-of-bounds access vulnerability in RegExp.prototype.exec and RegExp.prototype.test.
a2dfbfbd5b6b713bef9434dadf2a4e4076dec67533a901bf128641446d851b2b
Adobe Flash suffers from a heap corruption vulnerability in the ATF parser.
aa2b6fd4f44a098e6ecba7504988e0d89a5e75e3bc29a11c164bf7ac741679b8
Adobe Flash suffers from an image decoding out-of-bounds read vulnerability.
ed9044e4b79f06703ef40af5da53a9e9a388c8c9448c95d856dc28954cdd4c1a
Adobe Flash suffers from an avc edge processing out-of-bounds read vulnerability.
d111143f959eac16a5ac31bce6622f40e6dd0f4a712d9c78aedc9111f504fb20
Adobe Flash suffers from an out-of-bounds read vulnerability in getting TextField width.
9df26844062fc2ace52e85740d4fa13061df58424c3ec92399e04d0ada74a245
Adobe Flash suffers from a heap corruption vulnerability in the margin handling.
19f24cf279fd2e72d032220c5d8428c8270508c3c25f9006996eac40ba0cc4ad
Adobe Flash suffers from an out-of-bounds read in AVC deblocking.
750594de5f9554b1eb4832b7745301c0ab665475c1dbefff2c225998feca6426
Safari suffers from an out-of-bounds memcpy in Array.concat that can lead to memory corruption.
6db1ba6357b6b2691d74c0fe51123d940627a490bc8ab5b483b0f2bce87edc4d