Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows attackers to cause a denial of service (Segmentation Fault), because the currentNode variable in the "children of the head" processing feature is modified in the loop without validating the new value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tidy 安全漏洞
Vulnerability Description
Tidy是美国万维网联盟(W3C)的研究员Dave Raggett所开发的一个用于纠正和清理HTML文件的错误及整齐排列代码(即缩排)的软件及函数库。 Tidy 5.7.0版本中的clean.c文件的‘prvTidyTidyMetaCharset’函数存在安全漏洞,该漏洞源于程序在没有检测新值的情况下,更改‘children of the head’处理功能中的currentNode变量。攻击者可利用该漏洞造成拒绝服务(段错误)。
CVSS Information
N/A
Vulnerability Type
N/A