CVE-2017-17497

Published: 2017-12-10T22:29Z

Last Modified: 2024-11-21T03:18Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows attackers to cause a denial of service (Segmentation Fault), because the currentNode variable in the "children of the head" processing feature is modified in the loop without validating the new value. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt