CVE-2011-1798

Google Chrome < 11.0.696.64 - Denial of Service via SVG Text Element Handling

Title source: llm
STIX 2.1

Description

rendering/svg/RenderSVGText.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 does not properly perform a cast of an unspecified variable during an attempt to handle a block child, which allows remote attackers to cause a denial of service (application crash) or possibly have unknown other impact via a crafted text element in an SVG document.

References (3)

Core 3
Core References
Various Sources x_refsource_confirm
http://trac.webkit.org/changeset/84085
Various Sources x_refsource_confirm
http://launchpad.net/bugs/778822
Issue Tracking x_refsource_confirm
http://crbug.com/79595

Scores

EPSS 0.0108
EPSS Percentile 61.2%

Details

CWE
CWE-20
Status published
Products (1)
google/chrome < 11.0.696.64
Published Dec 26, 2014
Tracked Since Feb 18, 2026