Уязвимость CVE-2016-2796

Пакет	Статус	Версия исправления	Тип
iceweasel	removed		package
firefox-esr	fixed	45.0esr-1	package
firefox	fixed	45.0-1	package
icedove	fixed	38.7.0-1	package
graphite2	fixed	1.3.6-1	package

CVE-2016-2796

CVSS3: 8.8

ubuntu

больше 9 лет назад

Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

CVE-2016-2796

redhat

больше 9 лет назад

Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

CVE-2016-2796

CVSS3: 8.8

nvd

больше 9 лет назад

Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

GHSA-wrvv-xmm6-v84h

CVSS3: 8.8

github

больше 3 лет назад

Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

BDU:2016-00724

fstec

больше 9 лет назад

Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

exploitDog

CVE-2016-2796

Описание

Пакеты

Примечания

Связанные уязвимости