Security Advisory

CVE-2017-17821

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-12-21 03:00:00

Last updated 2024-08-05 20:59:18

Assigner mitre

State PUBLISHED

Description

WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because it calls the FastBitVectorWordOwner::resizeSlow function (in WTF/wtf/FastBitVector.cpp) for a purpose other than initializing a bitvector size, and resizeSlow mishandles cases where the old array length is greater than the new array length.

← Browse all CVEs View on cve.org ↗