Use-after-free vulnerability in XSLStyleSheet::compileStyleSheet function in Blink

Use-after-free vulnerability in XSLStyleSheet::compileStyleSheet function in Blink

CVE-2013-2911 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Use-after-free vulnerability in the XSLStyleSheet::compileStyleSheet function in core/xml/XSLStyleSheetLibxslt.cpp in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of post-failure recompilation in unspecified libxslt versions.

Learn more about our Cis Benchmark Audit For Google Chrome.