CVE-2022-1486 V8 in Google Chrome prior to 101.0.4951.41 could read memory of other processes due to confusion between objects.

CVE-2016-5127 A use after free issue was found in WebGL rendering under certain circumstances. Remote attackers could leverage this to execute arbitrary code. CVE-2016-5128 An issue was discovered with the handling of web workers when redirecting between subframes. Worker code that called worker.relocate() could be made to crash.

CVE-2016-5129 An issue was discovered with the handling of redirects when a subframe redirects to a different origin. This caused redirects to be followed instead of proxyred. This could be used to bypass security restrictions.

CVE-2016-5130 An issue was discovered with the handling of redirects when a page redirects to itself. If the redirect is followed, the code that calls worker.postMessage() could be made to crash.

CVE-2016-5131 An issue was discovered with the handling of redirects when a page redirects to anabsolute URL. The code that calls worker.postMessage() could be made to crash.

CVE-2016-5132 A use after free issue was found in the handling of HTTP/2 server push. This could lead to remote code execution.

CVE-2016-5133 A use after free issue was found in the handling of redirects when a redirect occurs at the same time as data is sent over a connection that worker.connect() was called at. This could lead to remote code execution.

CVE-2016

^

A use after free issue was found in WebGL rendering under certain circumstances. Remote attackers could leverage this to execute arbitrary code.
An issue was discovered with the handling of web workers when redirecting between subframes. Worker code that called worker.relocate() could be made to crash.
An issue was discovered with the handling of redirects when a subframe redirects to a different origin. This caused redirects to be followed instead of proxyred. This could be used to bypass security restrictions.
An issue was discovered with the handling of redirects when a page redirects to itself. If the redirect is followed, the code that calls worker.postMessage() could be made to crash.

. This could lead to remote code execution.

A use after free issue was found in WebGL rendering under certain circumstances. Remote attackers could leverage this to execute arbitrary code.
DDES-2017-0003 An issue was discovered with the handling of Certificate Transparency logs, which can be accessed through a file:// scheme. Maliciously crafted certificates could have been used to bypass intended restrictions on client authentication.

^ CVE-2016: 5134

A use after free issue was found in the handling of location objects when data is sent over a connection. This could lead to remote code execution.

CVE-2016: 5135

A use after free issue was found in the handling of worker threads' environment variables. This could lead to remote code execution.

What is WebKit?

WebKit is a cross-platform web browser engine. Its main source code is released under the GNU General Public License, and it is free software. It also contains third party software that is licensed under an open source or proprietary license, such as FreeType 2 or the font rasterizer ClearType, which are optional dependencies for compiling with WebKit (the latter would be replaced by FreeType 2 in a later version of WebKit).

The project was originally called KHTML, but this name clashed with KDE's K Desktop Environment and was changed to WebKit.

How does this work?

Timeline

Published on: 07/26/2022 22:15:00 UTC
Last modified on: 08/15/2022 11:16:00 UTC

^

^ CVE-2016-5134 A use after free issue was found in the handling of history navigation and sharing

^ CVE-2016: 5134

What is WebKit?

How does this work?

Timeline

References