Уязвимость CVE-2016-1977

Пакет	Статус	Версия исправления	Тип
iceweasel	removed		package
firefox-esr	fixed	45.0esr-1	package
firefox	fixed	45.0-1	package
icedove	fixed	38.7.0-1	package
graphite2	fixed	1.3.6-1	package

CVE-2016-1977

CVSS3: 8.8

ubuntu

больше 9 лет назад

The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted Graphite smart font.

CVE-2016-1977

redhat

больше 9 лет назад

The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted Graphite smart font.

CVE-2016-1977

CVSS3: 8.8

nvd

больше 9 лет назад

The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted Graphite smart font.

GHSA-7f72-9cfh-wr9m

CVSS3: 8.8

github

больше 3 лет назад

The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted Graphite smart font.

BDU:2016-00741

fstec

больше 9 лет назад

Уязвимость программного средства рендеринга Graphite 2, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

exploitDog

CVE-2016-1977

Описание

Пакеты

Примечания

Связанные уязвимости