CVE-2015-1218

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 41.0.2272.76

Description The issue is related to multiple use-after-free vulnerabilities in the DOM implementation in Blink. These vulnerabilities can be triggered by moving a SCRIPT element to different documents, potentially allowing remote attackers to cause a denial of service or have other unspecified impacts. The vulnerabilities are related to the HTMLScriptElement::didMoveToNewDocument function in core/html/HTMLScriptElement.cpp and the SVGScriptElement::didMoveToNewDocument function in core/svg/SVGScriptElement.cpp.

Recommendations For Google Chrome versions prior to 41.0.2272.76, update to version 41.0.2272.76 or later to resolve the issue. As a temporary workaround, consider restricting the movement of SCRIPT elements to different documents until a patch is applied.