Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
The product calls free() twice on the same memory address.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Chrome | * | 8.0.552.215 (excluding) | |
Red Hat Enterprise Linux 6 | RedHat | libxml2-0:2.7.6-4.el6 | * |
Red Hat Enterprise Linux 6 | RedHat | mingw32-libxml2-0:2.7.6-6.el6_3 | * |
Chromium-browser | Ubuntu | devel | * |
Chromium-browser | Ubuntu | lucid | * |
Chromium-browser | Ubuntu | maverick | * |
Chromium-browser | Ubuntu | upstream | * |