Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-1824

Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG styles, the DOM tree, and error messages.

Related bugs and status

CVE-2010-1824 (Candidate) is related to these bugs:

Bug #814464: webkit 1.2.7 security update tracking bug

		In	Importance	Status
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu)	Undecided	Invalid
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Lucid)	Medium	Fix Released
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Maverick)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
CONFIRM: https://bugs.webkit.or...
SUSE: SUSE-SR:2011:002
SECUNIA: 43068
VUPEN: ADV-2011-0212
MISC: http://www.zerodayinit...
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2011-03-02-1
CONFIRM: http://support.apple.c...
OVAL: oval:org.mitre.oval:de...