Off-by-one Error and Out-of-bounds Write Vulnerability in WebKitGTK+ 2.20.3

Off-by-one Error and Out-of-bounds Write Vulnerability in WebKitGTK+ 2.20.3

CVE-2018-12911 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bounds write, in the get_simple_globs functions in ThirdParty/xdgmime/src/xdgmimecache.c and ThirdParty/xdgmime/src/xdgmimeglob.c.

Learn more about our Web Application Penetration Testing UK.