CVE-2011-1798
Google Chrome < 11.0.696.64 - Denial of Service via SVG Text Element Handling
Title source: llmDescription
rendering/svg/RenderSVGText.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 does not properly perform a cast of an unspecified variable during an attempt to handle a block child, which allows remote attackers to cause a denial of service (application crash) or possibly have unknown other impact via a crafted text element in an SVG document.
References (3)
Core 3
Core References
Various Sources x_refsource_confirm
http://trac.webkit.org/changeset/84085
Various Sources x_refsource_confirm
http://launchpad.net/bugs/778822
Issue Tracking x_refsource_confirm
http://crbug.com/79595
Scores
EPSS
0.0108
EPSS Percentile
61.2%
Details
CWE
CWE-20
Status
published
Products (1)
google/chrome
< 11.0.696.64
Published
Dec 26, 2014
Tracked Since
Feb 18, 2026