Endpoint Vulnerability

Use-after-free when applying SVG effects

Description

Security researcher Nils used the Address Sanitizer tool to discover a use-after-free vulnerability when applying effects to SVG elements. This results in a potentially exploitable crash.

Affected Products

Firefox

References

CVE-2016-5264,