Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
16 Mar 2021
15 Mar 2021
How to fix?
electron to version 11.4.0, 10.4.1 or higher.
Affected versions of this package are vulnerable to Use After Free. When a
LayoutInline is removed,
LineBoxList::DirtyLinesFromChangedChild tries to mark affected
When the |LayoutInline| to be removed is culled, it tries to find the
RootInlineBox from its previous siblings, then look for its previous and next
Occasionally, the next next line of the previous sibling is wrapped at the
LayoutInline, and that its
LineBreakObj() holds the reference to the
LayoutInline. This patch marks such