Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-2052

Опубликовано: 25 янв. 2016
Источник: debian

Описание

Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc, a different issue than CVE-2015-8947.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
harfbuzzfixed1.2.6-1package
harfbuzznot-affectedjessiepackage
chromium-browserfixed48.0.2564.82-1package
chromium-browserend-of-lifewheezypackage

Примечания

  • https://code.google.com/p/chromium/issues/detail?id=544270

  • https://github.com/behdad/harfbuzz/commit/63ef0b41dc48d6112d1918c1b1de9de8ea90adb5

Связанные уязвимости

ubuntu логотип

CVE-2016-2052

CVSS3: 7.6
ubuntu
около 10 лет назад

Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc, a different issue than CVE-2015-8947.

redhat логотип

CVE-2016-2052

redhat
около 10 лет назад

Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc, a different issue than CVE-2015-8947.

nvd логотип

CVE-2016-2052

CVSS3: 7.6
nvd
около 10 лет назад

Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc, a different issue than CVE-2015-8947.

github логотип

GHSA-vx72-qhm5-54jj

CVSS3: 7.6
github
больше 3 лет назад

Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc, a different issue than CVE-2015-8947.

fstec логотип

BDU:2016-00389

fstec
около 10 лет назад

Уязвимости браузера Google Chrome и библиотеки форматирования текста HarfBuzz, позволяющие нарушителю вызвать отказ в обслуживании или оказать другое воздействие