Unset pageURL vulnerability in WebKitGTK+ leading to application crash

Unset pageURL vulnerability in WebKitGTK+ leading to application crash

CVE-2018-11646 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.

Learn more about our Api Penetration Testing.