CVE - CVE-2009-0945

CVE-ID
CVE-2009-0945	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Array index error in the insertItemBefore method in WebKit, as used in Apple Safari before 3.2.3 and 4 Public Beta, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome Stable before 1.0.154.65, and possibly other products allows remote attackers to execute arbitrary code via a document with a SVGPathList data structure containing a negative index in the (1) SVGTransformList, (2) SVGStringList, (3) SVGNumberList, (4) SVGPathSegList, (5) SVGPointList, or (6) SVGLengthList SVGList object, which triggers memory corruption.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2009-05-12 URL:http://lists.apple.com/archives/security-announce/2009/May/msg00000.html APPLE:APPLE-SA-2009-05-12 URL:http://lists.apple.com/archives/security-announce/2009/May/msg00001.html APPLE:APPLE-SA-2009-05-12 URL:http://lists.apple.com/archives/security-announce/2009/May/msg00002.html APPLE:APPLE-SA-2009-06-17-1 URL:http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html BID:34924 URL:http://www.securityfocus.com/bid/34924 BUGTRAQ:20090519 ZDI-09-022: Apple Safari Malformed SVGList Parsing Code Execution Vulnerability URL:http://www.securityfocus.com/archive/1/503594/100/0/threaded CERT:TA09-133A URL:http://www.us-cert.gov/cas/techalerts/TA09-133A.html CONFIRM:http://code.google.com/p/chromium/issues/detail?id=9019 CONFIRM:http://googlechromereleases.blogspot.com/2009/05/stable-update-bug-fix.html CONFIRM:http://support.apple.com/kb/HT3549 CONFIRM:http://support.apple.com/kb/HT3550 CONFIRM:http://support.apple.com/kb/HT3639 DEBIAN:DSA-1950 URL:http://www.debian.org/security/2009/dsa-1950 FEDORA:FEDORA-2009-6166 URL:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00303.html FEDORA:FEDORA-2009-8039 URL:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01177.html FEDORA:FEDORA-2009-8049 URL:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01196.html MISC:http://www.zerodayinitiative.com/advisories/ZDI-09-022 OVAL:oval:org.mitre.oval:def:11584 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11584 REDHAT:RHSA-2009:1130 URL:http://www.redhat.com/support/errata/RHSA-2009-1130.html SECTRACK:1022207 URL:http://www.securitytracker.com/id?1022207 SECUNIA:35056 URL:http://secunia.com/advisories/35056 SECUNIA:35074 URL:http://secunia.com/advisories/35074 SECUNIA:35095 URL:http://secunia.com/advisories/35095 SECUNIA:35576 URL:http://secunia.com/advisories/35576 SECUNIA:35805 URL:http://secunia.com/advisories/35805 SECUNIA:36062 URL:http://secunia.com/advisories/36062 SECUNIA:36461 URL:http://secunia.com/advisories/36461 SECUNIA:36790 URL:http://secunia.com/advisories/36790 SECUNIA:37746 URL:http://secunia.com/advisories/37746 SECUNIA:43068 URL:http://secunia.com/advisories/43068 SUSE:SUSE-SR:2011:002 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html UBUNTU:USN-822-1 URL:http://www.ubuntu.com/usn/USN-822-1 UBUNTU:USN-823-1 URL:https://usn.ubuntu.com/823-1/ UBUNTU:USN-836-1 URL:http://www.ubuntu.com/usn/USN-836-1 UBUNTU:USN-857-1 URL:http://www.ubuntu.com/usn/USN-857-1 VUPEN:ADV-2009-1297 URL:~~http://www.vupen.com/english/advisories/2009/1297~~ (Obsolete source) VUPEN:ADV-2009-1298 URL:~~http://www.vupen.com/english/advisories/2009/1298~~ (Obsolete source) VUPEN:ADV-2009-1321 URL:~~http://www.vupen.com/english/advisories/2009/1321~~ (Obsolete source) VUPEN:ADV-2009-1621 URL:~~http://www.vupen.com/english/advisories/2009/1621~~ (Obsolete source) VUPEN:ADV-2011-0212 URL:~~http://www.vupen.com/english/advisories/2011/0212~~ (Obsolete source) XF:safari-webkit-svglist-bo(50477) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/50477
Assigning CNA
MITRE Corporation
Date Record Created
20090318	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20090318)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)