Integer Overflow Vulnerability in Google Chrome's XSLT Processing
CVE-2017-5029

8.8HIGH

Key Information:

Vendor
Google
Status
Google Chrome Prior To 57.0.2987.98 For Mac, Windows And Linux, And 57.0.2987.108 For Android
Vendor
CVE Published:
24 April 2017

Summary

The xsltAddTextString function in libxslt version 1.1.29, utilized by Google Chrome prior to specific versions, was susceptible to an integer overflow during size calculations. This flaw permitted remote attackers to exploit crafted HTML pages to initiate out of bounds memory writes. Such vulnerabilities can lead to severe outcomes, including remote code execution, highlighting the need for timely updates and security patches.

Affected Version(s)

Google Chrome prior to 57.0.2987.98 for Mac, Windows and Linux, and 57.0.2987.108 for Android Google Chrome prior to 57.0.2987.98 for Mac, Windows and Linux, and 57.0.2987.108 for Android

References

https://chromereleases.googleblog.com/2017/03/stable-chan...
x_refsource_CONFIRM
https://git.gnome.org/browse/libxslt/commit/?id=08ab2774b...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1038157
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.