Multiple use-after-free vulnerabilities in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger movement of a SCRIPT element to different documents, related to (1) the HTMLScriptElement::didMoveToNewDocument function in core/html/HTMLScriptElement.cpp and (2) the SVGScriptElement::didMoveToNewDocument function in core/svg/SVGScriptElement.cpp.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Chrome
Published: 2015-03-09T00:00:00
Updated: 2016-12-20T16:57:01
Reserved: 2015-01-21T00:00:00
Link: CVE-2015-1218
JSON object: View
NVD Information
Status : Modified
Published: 2015-03-09T00:59:10.903
Modified: 2023-11-07T02:24:10.387
Link: CVE-2015-1218
JSON object: View
Redhat Information
No data.
CWE