CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document.

Date published : 2014-11-18

http://lists.apple.com/archives/security-announce/2014/Nov/msg00001.html

http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html