CVE-2009-1687

See a problem?

Source

https://nvd.nist.gov/vuln/detail/CVE-2009-1687

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2009-1687.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2009-1687

Related

Withdrawn

2024-06-30T13:40:11.804677Z

Published

2009-06-10T14:30:00Z

Modified

2024-04-11T07:40:48Z

Summary

[none]

Details

The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an "offset of a NULL pointer."

References

Affected packages

Debian:10 / qt4-x11

Package

Name: qt4-x11
Purl: pkg:deb/debian/qt4-x11?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.5.2-1

Ecosystem specific

{
    "urgency": "medium"
}