Уязвимость CVE-2016-2799

Пакет	Статус	Версия исправления	Тип
iceweasel	removed		package
firefox-esr	fixed	45.0esr-1	package
firefox	fixed	45.0-1	package
icedove	fixed	38.7.0-1	package
graphite2	fixed	1.3.6-1	package

CVE-2016-2799

CVSS3: 8.8

ubuntu

около 10 лет назад

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

CVE-2016-2799

redhat

около 10 лет назад

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

CVE-2016-2799

CVSS3: 8.8

nvd

около 10 лет назад

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

GHSA-v372-hjjq-ccmr

CVSS3: 8.8

github

почти 4 года назад

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

BDU:2016-00721

fstec

около 10 лет назад

Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

exploitDog

CVE-2016-2799

Описание

Пакеты

Примечания

Связанные уязвимости