Back to search
CVE-2022-29536
Published: Apr 20, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1106
x_refsource_MISC
FEDORA-2022-ad26447c98
vendor-advisory
x_refsource_FEDORA
FEDORA-2022-22b85a45cb
vendor-advisory
x_refsource_FEDORA
FEDORA-2022-88690c6188
vendor-advisory
x_refsource_FEDORA
DSA-5208
vendor-advisory
x_refsource_DEBIAN
[debian-lts-announce] 20220818 [SECURITY] [DLA 3074-1] epiphany-browser security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now