Описание
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libcroco | removed | package | ||
| libcroco | ignored | buster | package | |
| libcroco | ignored | stretch | package | |
| libcroco | no-dsa | jessie | package | |
| libcroco | not-affected | wheezy | package |
Примечания
https://bugzilla.gnome.org/show_bug.cgi?id=782647
EPSS
Связанные уязвимости
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.
Уязвимость функции cr_tknzr_parse_comment компонента cr-tknzr.c библиотеки для работы с каскадными таблицами css2 Libcroco, позволяющая нарушителю вызвать отказ в обслуживании
EPSS