Unrated severityNVD Advisory· Published Sep 24, 2010· Updated Apr 29, 2026
CVE-2010-1823
CVE-2010-1823
Description
Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger use of document APIs such as document.close during parsing, as demonstrated by a Cascading Style Sheets (CSS) file referencing an invalid SVG font, aka rdar problem 8442098.
Affected products
3Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- code.google.com/p/chromium/issues/detailnvdIssue TrackingPatchVendor Advisory
- bugs.webkit.org/show_bug.cginvdIssue TrackingPatchThird Party Advisory
- googlechromereleases.blogspot.com/2010/09/stable-beta-channel-updates_14.htmlnvdVendor Advisory
- lists.apple.com/archives/Security-announce/2011//Oct/msg00000.htmlnvdMailing ListThird Party Advisory
- lists.apple.com/archives/security-announce/2011//Jul/msg00002.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlnvdMailing ListThird Party Advisory
- secunia.com/advisories/43068nvdThird Party Advisory
- support.apple.com/kb/HT4808nvdThird Party Advisory
- support.apple.com/kb/HT4981nvdThird Party Advisory
- www.vupen.com/english/advisories/2011/0212nvdThird Party Advisory
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7405nvdThird Party Advisory
- bugs.webkit.org/show_bug.cginvdPermissions Required
News mentions
0No linked articles in our index yet.