|Summary||NULL pointer dereference in parsing invalid HTML|
|Discovered By||Jeffrey Rosen|
|Fixed In Release||2.2.2|
A remote user can cause a denial of service (crash) by sending a message with invalid HTML. It is believed that this crash can be triggered only when using HTML logging.
The affected function has been patched to fix the vulnerability.