Use-after-free vulnerability in WebKit allows for denial of service or other impact via crafted HTML document

Use-after-free vulnerability in WebKit allows for denial of service or other impact via crafted HTML document

CVE-2016-1644 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

WebKit/Source/core/layout/LayoutObject.cpp in Blink, as used in Google Chrome before 49.0.2623.87, does not properly restrict relayout scheduling, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted HTML document.

Learn more about our Cis Benchmark Audit For Google Chrome.