Описание
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libcroco | removed | package | ||
| libcroco | ignored | buster | package | |
| libcroco | ignored | stretch | package | |
| libcroco | no-dsa | jessie | package | |
| libcroco | not-affected | wheezy | package |
Примечания
https://bugzilla.gnome.org/show_bug.cgi?id=782649
EPSS
Связанные уязвимости
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
Уязвимость функции cr_parser_parse_selector_core компонента cr-parser.c библиотеки для работы с каскадными таблицами css2 Libcroco, позволяющая нарушителю вызвать отказ в обслуживании
EPSS