Endpoint Vulnerability

Use-after-free with SMIL Animation Controller

Description

Security researcher Nils used the Address Sanitizer to discover a use-after-free problem with the SMIL Animation Controller when interacting with and rendering improperly formed web content. This causes a potentially exploitable crash.

Affected Products

Thunderbird

References

CVE-2014-1541,