Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Safari
(Apple)| Repositories | https://github.com/WebKit/webkit |
| #Vulnerabilities | 1430 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2011-05-03 | CVE-2011-1451 | Google Chrome before 11.0.696.57 does not properly handle DOM id maps, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers." | Iphone_os, Itunes, Safari, Chrome | N/A | ||
| 2011-05-03 | CVE-2011-1449 | Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | Iphone_os, Itunes, Safari, Chrome | N/A | ||
| 2011-05-03 | CVE-2011-1440 | Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences. | Itunes, Safari, Debian_linux, Chrome | N/A | ||
| 2011-09-19 | CVE-2011-3234 | Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. | Iphone_os, Itunes, Safari, Chrome | N/A | ||
| 2012-03-22 | CVE-2011-3056 | Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe." | Iphone_os, Safari, Chrome, Opensuse | N/A | ||
| 2012-03-22 | CVE-2011-3053 | Use-after-free vulnerability in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to block splitting. | Iphone_os, Itunes, Safari, Chrome, Opensuse | N/A | ||
| 2012-03-22 | CVE-2011-3050 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element. | Iphone_os, Itunes, Safari, Chrome, Opensuse | N/A | ||
| 2012-03-09 | CVE-2011-3046 | The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue. | Iphone_os, Safari, Chrome, Opensuse | N/A | ||
| 2012-03-05 | CVE-2011-3044 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animation elements. | Iphone_os, Itunes, Safari, Chrome, Opensuse | N/A | ||
| 2012-03-05 | CVE-2011-3043 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a flexbox (aka flexible box) in conjunction with the floating of elements. | Iphone_os, Itunes, Safari, Chrome, Opensuse | N/A |