Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Kde | Kde | 4.7.3 (including) | 4.7.3 (including) |
| Kde-baseapps | Ubuntu | oneiric | * |
| Kde-baseapps | Ubuntu | precise | * |
| Kde-baseapps | Ubuntu | quantal | * |
| Kde-baseapps | Ubuntu | raring | * |
| Kde-baseapps | Ubuntu | saucy | * |
| Kde-baseapps | Ubuntu | upstream | * |
| Kde-baseapps | Ubuntu | utopic | * |
| Kde-baseapps | Ubuntu | vivid | * |
| Kde-baseapps | Ubuntu | wily | * |
| Kde-baseapps | Ubuntu | yakkety | * |
| Kdebase | Ubuntu | hardy | * |
| Kdebase | Ubuntu | lucid | * |
| Kdebase | Ubuntu | natty | * |
| Kdebase | Ubuntu | upstream | * |
References
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html
- http://quickgit.kde.org/index.php?p=kdelibs.git\u0026a=commitdiff\u0026h=4f2eb356f1c23444fff2cfe0a7ae10efe303d6d8
- http://secunia.com/advisories/51097
- http://secunia.com/advisories/51145
- http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc
- http://www.openwall.com/lists/oss-security/2012/10/11/11
- http://www.openwall.com/lists/oss-security/2012/10/30/6
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html
- http://quickgit.kde.org/index.php?p=kdelibs.git\u0026a=commitdiff\u0026h=4f2eb356f1c23444fff2cfe0a7ae10efe303d6d8
- http://secunia.com/advisories/51097
- http://secunia.com/advisories/51145
- http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc
- http://www.openwall.com/lists/oss-security/2012/10/11/11
- http://www.openwall.com/lists/oss-security/2012/10/30/6