2 matches found
CVE-2017-17497
In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows attackers to cause a denial of service Segmentation Fault, because the currentNode variable in the "children of the head" processing feature is modified in the loop without validating the new value...
CVE-2017-17497
CVE-2017-17497 affects Tidy 5.7.0. The vulnerability is in the prvTidyTidyMetaCharset function in clean.c, where the currentNode variable used in the “children of the head” processing path is modified inside a loop without validating the updated value. This can lead to a denial of service via a s...