When a for-in loop is executed, a JSPropertyNameEnumerator object is created at the beginning and used to store the information of the input object to the for-in loop. Inside the loop, the structure ID of the "this" object of every get_by_id expression taking the loop variable as the index is compared to the cached structure ID from the JSPropertyNameEnumerator object. If it's the same, the "this" object of the get_by_id expression will be considered having the same structure as the input object to the for-in loop has. The problem is, it doesn't have anything to prevent the structure from which the cached structure ID from being freed. As structure IDs can be reused after their owners get freed, this can lead to type confusion.
8f4f4959d722f37276fc6cd1ba9725d214fa2d1eafa97af721346d7487bda487
WebKitGTK+ and WPE WebKit suffer from code execution, cross site scripting, and various other vulnerabilities.
767e5dec630fcfe59774e5347356e1118ee764c436f4980d89aeec4248315329
Apple Security Advisory 2018-10-30-7 - iCloud for Windows 7.8 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities.
0f2c1d4a22391c68b429a821b01e477865094f08d5a9098b4cf5e635c4add03b
Apple Security Advisory 2018-10-30-5 - tvOS 12.1 is now available and addresses code execution, denial of service, and resource exhaustion vulnerabilities.
e6780863e9995b96363ff9c2d4ba7998a18cb5cfc0e6cfe9ed734a006e414100
Apple Security Advisory 2018-10-30-6 - iTunes 12.9.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities.
b83b5516c643e427bfbcad08d53b7c2b642db6c49c0df0bd95651d56e0fa3b7c
Apple Security Advisory 2018-10-30-4 - watchOS 5.1 is now available and addresses code execution, cross site scripting, and denial of service vulnerabilities.
5f0d2857f7fda2b0ead56a90ba332bcf54ad8599c15943b3e0a2dd9318b61758
Apple Security Advisory 2018-10-30-3 - Safari 12.0.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities.
74e565ad09fafb02ea859d2bbeaf901f30f795b6a23fdbc0902acc87f1c428af
Apple Security Advisory 2018-10-30-1 - iOS 12.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities.
93a362567b72263d53b58c256f7884c72cb4ddbf8dc6666545a0ea17c505edc5