This could have led to a potentially exploitable crash. While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic type. #CVE-2023-28162: Invalid downcast in Worklets #CVE-2023-28164: URL being dragged from a removed cross-origin iframe into the same tab triggered navigationĭragging a URL from a cross-origin iframe that was removed during the drag could have led to user confusion and website spoofing attacks. This could lead to a potentially exploitable crash. Sometimes, when invalidating JIT code while following an iterator, the newly generated code could be overwritten incorrectly. Thunderbird 102.9.0 Security Notes #CVE-2023-25751: Incorrect code generation during JIT compilation
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |