Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30447
HistoryApr 03, 2014 - 12:00 a.m.

APPLE-SA-2014-04-01-1 Safari 6.1.3 and Safari 7.0.3

2014-04-0300:00:00
vulners.com
72
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2014-04-01-1 Safari 6.1.3 and Safari 7.0.3

Safari 6.1.3 and Safari 7.0.3 are now available and address the
following:

WebKit
Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,
OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory handling.
CVE-ID
CVE-2013-2871 : miaubiz
CVE-2013-2926 : cloudfuzzer
CVE-2013-2928 : Google Chrome Security Team
CVE-2013-6625 : cloudfuzzer
CVE-2014-1289 : Apple
CVE-2014-1290 : ant4g0nist (SegFault) working with HP's Zero Day
Initiative, Google Chrome Security Team
CVE-2014-1291 : Google Chrome Security Team
CVE-2014-1292 : Google Chrome Security Team
CVE-2014-1293 : Google Chrome Security Team
CVE-2014-1294 : Google Chrome Security Team
CVE-2014-1298 : Google Chrome Security Team
CVE-2014-1299 : Google Chrome Security Team, Apple, Renata Hodovan of
University of Szeged / Samsung Electronics
CVE-2014-1300 : Ian Beer of Google Project Zero working with HP's
Zero Day Initiative
CVE-2014-1301 : Google Chrome Security Team
CVE-2014-1302 : Google Chrome Security Team, Apple
CVE-2014-1303 : KeenTeam working with HP's Zero Day Initiative
CVE-2014-1304 : Apple
CVE-2014-1305 : Apple
CVE-2014-1307 : Google Chrome Security Team
CVE-2014-1308 : Google Chrome Security Team
CVE-2014-1309 : cloudfuzzer
CVE-2014-1310 : Google Chrome Security Team
CVE-2014-1311 : Google Chrome Security Team
CVE-2014-1312 : Google Chrome Security Team
CVE-2014-1313 : Google Chrome Security Team
CVE-2014-1713 : VUPEN working with HP's Zero Day Initiative

WebKit
Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,
OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2
Impact: An attacker running arbitary code in the WebProcess may be
able to read arbitrary files despite sandbox restrictions
Description: A logic issue existed in the handling of IPC messages
from the WebProcess. This issue was addressed through additional
validation of IPC messages.
CVE-ID
CVE-2014-1297 : Ian Beer of Google Project Zero

For OS X Mavericks and OS X Mountain Lion systems, Safari 7.0.3
and Safari 6.1.3 may be obtained from Mac App Store.

For OS X Lion systems Safari 6.1.3 is available via the Apple
Software Update application.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
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=kHuK
-----END PGP SIGNATURE-----

Related

securityvulns 14
nessus 35
openvas 27
prion 27
cve 27
thn 1
mageia 4
chrome 4
freebsd 3
debiancve 5
ubuntucve 19
seebug 10
zdi 4
threatpost 4
checkpoint_advisories 1
exploitpack 1
zdt 1
exploitdb 1
suse 4
debian 4
osv 3
securityvulns
securityvulns
Apple Safari multiple security vulnerabilities
2014-04-03 00:00:00
APPLE-SA-2014-04-22-2 iOS 7.1.1
2014-05-04 00:00:00
Apple iOS multiple security vulnerabilities
2014-05-04 00:00:00
nessus
nessus
Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities
2014-04-10 00:00:00
Mac OS X : Apple Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities
2014-04-02 00:00:00
Apple TV < 6.1.1 Multiple Vulnerabilities
2014-05-29 00:00:00
openvas
openvas
Apple Safari Multiple Memory Corruption Vulnerabilities-02 (Apr 2014) - Mac OS X
2014-04-07 00:00:00
Apple Safari Multiple Memory Corruption Vulnerabilities-01 (Apr 2014) - Mac OS X
2014-04-07 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Oct 2013) - Mac OS X
2013-10-23 00:00:00
prion
prion
Memory corruption
2014-03-14 10:55:00
Memory corruption
2014-03-14 10:55:00
Memory corruption
2014-03-14 10:55:00
cve
cve
CVE-2014-1291
2014-03-14 10:55:00
CVE-2014-1290
2014-03-14 10:55:00
CVE-2014-1289
2014-03-14 10:55:00
thn
thn
Update Your Safari Browser to Patch Two Dozen of Critical Vulnerabilities
2014-04-02 22:43:00
mageia
mageia
Updated chromium-browser-stable packages fix multiple vulnerabilities
2013-11-09 22:58:53
Updated chromium-browser-stable packages fix security vulnerabilities
2014-03-19 21:33:30
Updated chromium-browser-stable packages fix multiple vulnerabilities
2013-11-13 23:09:45
chrome
chrome
Stable Channel Update
2013-10-15 00:00:00
Stable Channel Update
2014-03-14 00:00:00
Stable Channel Update for Chrome OS
2014-03-14 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-10-15 00:00:00
www/chromium -- multiple vulnerabilities
2014-03-14 00:00:00
chromium -- multiple vulnerabilities
2013-11-12 00:00:00
debiancve
debiancve
CVE-2013-6625
2013-11-13 15:55:00
CVE-2013-2871
2013-07-10 10:55:00
CVE-2013-2926
2013-10-16 20:55:00
ubuntucve
ubuntucve
CVE-2013-6625
2013-11-13 00:00:00
CVE-2014-1298
2014-04-02 00:00:00
CVE-2014-1299
2014-04-02 00:00:00
seebug
seebug
WebKit内存破坏漏洞(CVE-2014-1298)
2014-04-04 00:00:00
WebKit内存破坏漏洞(CVE-2014-1299)
2014-04-04 00:00:00
Apple Safari任意代码执行漏洞
2014-03-27 00:00:00
zdi
zdi
Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability
2014-04-03 00:00:00
(Pwn2Own\Pwn4Fun) Apple Webkit JSStringJoiner Memory Corruption Remote Code Execution Vulnerability
2014-04-11 00:00:00
(Pwn2Own) Apple Safari Heap Buffer Overflow Remote Code Execution Vulnerability
2014-04-11 00:00:00
threatpost
threatpost
Apple Fixes More Than 25 Flaws in Safari
2014-04-02 07:20:27
Google Fixes Three High-Risk Flaws in Chrome
2013-10-15 13:37:29
Google Patches Four Pwn2Own Bugs in Chrome 33
2014-03-17 11:24:53
checkpoint_advisories
checkpoint_advisories
Google Chrome locationAttributeSetter Use After Free (CVE-2014-1713)
2014-09-11 00:00:00
exploitpack
exploitpack
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow
2017-08-19 00:00:00
zdt
zdt
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow Exploit
2018-03-01 00:00:00
exploitdb
exploitdb
WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow
2017-08-19 00:00:00
suse
suse
chromium: 31.0.1650.57 version update (important)
2013-11-27 20:04:13
chromium: update to 31.0.1650.57 (important)
2013-12-12 18:05:02
chromium to 33.0.1750.152 stable release (important)
2014-04-09 19:04:26
debian
debian
[SECURITY] [DSA 2785-1] chromium-browser security update
2013-10-26 19:03:01
[SECURITY] [DSA 2785-1] chromium-browser security update
2013-10-26 19:03:01
[SECURITY] [DSA 2797-1] chromium-browser security update
2013-11-17 15:42:38
osv
osv
chromium-browser - several
2013-10-26 00:00:00
chromium-browser - several
2013-11-16 00:00:00
chromium-browser - several
2013-07-17 00:00:00
JSON
Related for SECURITYVULNS:DOC:30447
securityvulns14nessus35openvas27prion27cve27thn1mageia4chrome4freebsd3debiancve5ubuntucve19seebug10zdi4threatpost4checkpoint_advisories1exploitpack1zdt1exploitdb1suse4debian4osv3