CVE-2009-1690

Source
https://nvd.nist.gov/vuln/detail/CVE-2009-1690
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2009-1690.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2009-1690
Related
Withdrawn
2024-06-30T13:40:11.828410Z
Published
2009-06-10T14:30:00Z
Modified
2024-04-12T02:46:25Z
Summary
[none]
Details

Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to "recursion in certain DOM event handlers."

References

Affected packages

Debian:10 / kde4libs

Package

Name
kde4libs
Purl
pkg:deb/debian/kde4libs?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:4.3.0-1

Ecosystem specific

{
    "urgency": "medium"
}

Debian:10 / qt4-x11

Package

Name
qt4-x11
Purl
pkg:deb/debian/qt4-x11?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:4.5.2-1

Ecosystem specific

{
    "urgency": "medium"
}