JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 22, allows remote malicious users to cause a denial of service (heap-based out-of-bounds write and application crash) or possibly have unspecified other impact via crafted JavaScript code that triggers access to red-zone memory locations, related to jit/ThunkGenerators.cpp, llint/LowLevelInterpreter32_64.asm, and llint/LowLevelInterpreter64.asm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari 22 |