CVE-2016-1630

Publication date

2016-03-06 02:00:00

Family

Chrome

State

PUBLISHED

Description

The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for remote attackers to bypass the Same Origin Policy via a crafted web site.