CVE-2021-30560: Use After Free

August 3, 2021 (updated October 31, 2023)

Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

References

chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop.html
crbug.com/1219209
nvd.nist.gov/vuln/detail/CVE-2021-30560

Code Behaviors & Features

Detect and mitigate CVE-2021-30560 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →