CVE-2016-1634

Priority
Description
Use-after-free vulnerability in the StyleResolver::appendCSSStyleSheet
function in WebKit/Source/core/css/resolver/StyleResolver.cpp in Blink, as
used in Google Chrome before 49.0.2623.75, allows remote attackers to cause
a denial of service or possibly have unspecified other impact via a crafted
web site that triggers Cascading Style Sheets (CSS) style invalidation
during a certain subtree-removal action.
Notes
Package
Upstream:released (49.0.2623.75)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112])
Ubuntu 16.04 LTS (Xenial Xerus):released (49.0.2623.87-0ubuntu1.1232)
Package
Upstream:released (1.13.6)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1.13.6-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (1.13.6-0ubuntu1)
More Information

Updated: 2019-12-05 18:44:08 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)