Skip to main content

NULL Pointer Dereference

CVE-2021-44960

Severity Medium
Score 6.5/10

Summary

In SVGPP SVG++ library, the "XMLDocument::getRoot" function in the "renderDocument" function handled the XMLDocument object improperly, returning a null pointer in advance at the second if, resulting in a null pointer reference behind the "renderDocument" function. This issue affects versions prior to 1.3.1.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • REQUIRED
  • NONE
  • NONE
  • HIGH

CWE-476 - NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Advisory Timeline

  • Published