CVE-2016-10222

runtime/JSONObject.cpp in JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows remote attackers to cause a denial of service (segmentation violation and application crash) via crafted JavaScript code that triggers a "type confusion" in the JSON.stringify function.
References
Link Resource
https://bugs.webkit.org/show_bug.cgi?id=164123 Issue Tracking Third Party Advisory
http://trac.webkit.org/changeset/208123 Issue Tracking Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:apple:safari:18:*:*:*:technology_preview:*:*:*

Information

Published : 2017-04-02 22:59

Updated : 2017-04-10 18:09


NVD link : CVE-2016-10222

Mitre link : CVE-2016-10222


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

apple

  • safari