Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7778

Опубликовано: 11 июн. 2018
Источник: debian

Описание

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
graphite2fixed1.3.10-1package
firefoxfixed54.0-1package
firefox-esrfixed52.2.0esr-1package
icedovefixed1:52.2.0-1package

Примечания

  • https://bugzilla.mozilla.org/show_bug.cgi?id=1349310

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-15/#CVE-2017-7778

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-17/#CVE-2017-7778

Связанные уязвимости

ubuntu логотип

CVE-2017-7778

CVSS3: 9.8
ubuntu
около 7 лет назад

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

redhat логотип

CVE-2017-7778

CVSS3: 9.8
redhat
около 8 лет назад

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

nvd логотип

CVE-2017-7778

CVSS3: 9.8
nvd
около 7 лет назад

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

github логотип

GHSA-w4p4-6xh7-fhf6

CVSS3: 9.8
github
около 3 лет назад

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

fstec логотип

BDU:2019-00230

CVSS3: 5.6
fstec
около 8 лет назад

Уязвимость функции lz4::decompress библиотеки Graphite 2 браузеров Mozilla Firefox и Mozilla Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код