N/A

Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to an applyXSLTransform call involving (1) an HTML document or (2) an xsl:processing-instruction element that is still in the process of loading.

N/A

N/A

Google Chrome XSLT ProcessingInstruction实现释放后重用漏洞

Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。 Google Chrome 29.0.1547.56及之前的版本中使用的Blink浏览器引擎中的XSLT ProcessingInstruction实现中存在释放后重用漏洞。远程攻击者可借助包含持续位于加载进程中的HTML文档或xsl:processing-instruction元素的applyXSLTransform调用，利用该漏洞造成拒绝服务或产生其他未明影响。

N/A

N/A