CVE-2017-17821Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
9.8CRITICALNVD
EPSS
0.7%
top 28.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Webkit2gtkApple Safari
Timeline
PublishedDec 21
Latest updateMay 14

Description

WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because it calls the FastBitVectorWordOwner::resizeSlow function (in WTF/wtf/FastBitVector.cpp) for a purpose other than initializing a bitvector size, and resizeSlow mishandles cases where the old array length is greater than the new array length.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

debiandebian/webkit2gtk< webkit2gtk 2.22.0-2 (bookworm)
NVDapple/safari46

🔴Vulnerability Details

2
GHSA
GHSA-353g-x49j-hjg7: WTF/wtf/FastBitVector2022-05-14
OSV
CVE-2017-17821: WTF/wtf/FastBitVector2017-12-21

📋Vendor Advisories

1
Debian
CVE-2017-17821: webkit2gtk - WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview R...2017