CVE-2016-9063

Опубликовано: 11 июн. 2018

Источник: debian

EPSS Низкий

Описание

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	fixed	50.0-1		package
firefox-esr	not-affected			package
expat	fixed	2.2.0-2		package
libxmltok	removed			package
libxmltok	ignored		bookworm	package
expat	fixed	2.1.0-6+deb8u4	jessie	package
expat	no-dsa		wheezy	package

Expat upstream fix: https://github.com/libexpat/libexpat/commit/d4f735b88d9932bd5039df2335eefdd0723dbe20

EPSS

Процентиль: 80%

0.01462

Низкий

CVE-2016-9063

CVSS3: 9.8

ubuntu

больше 7 лет назад

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

CVE-2016-9063

CVSS3: 9.8

redhat

почти 9 лет назад

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

CVE-2016-9063

CVSS3: 9.8

nvd

больше 7 лет назад

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

GHSA-v3g4-2m5p-cjh4

CVSS3: 9.8

github

больше 3 лет назад

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

openSUSE-SU-2017:2336-1

suse-cvrf

около 8 лет назад

Security update for expat

EPSS

Процентиль: 80%

0.01462

Низкий