Описание
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
A heap-based buffer overflow was found in NSPR. An attacker could use this flaw to cause NSPR to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSPR library.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 4 | nspr | Will not fix | ||
| Red Hat Enterprise Linux 5 | nspr | Fixed | RHSA-2015:1980 | 04.11.2015 |
| Red Hat Enterprise Linux 5 | nss | Fixed | RHSA-2015:1980 | 04.11.2015 |
| Red Hat Enterprise Linux 6 | nspr | Fixed | RHSA-2015:1981 | 04.11.2015 |
| Red Hat Enterprise Linux 6 | nss | Fixed | RHSA-2015:1981 | 04.11.2015 |
| Red Hat Enterprise Linux 6 | nss-util | Fixed | RHSA-2015:1981 | 04.11.2015 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | nspr | Fixed | RHSA-2015:2068 | 18.11.2015 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | nss | Fixed | RHSA-2015:2068 | 18.11.2015 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | nss-util | Fixed | RHSA-2015:2068 | 18.11.2015 |
| Red Hat Enterprise Linux 6.4 Advanced Update Support | nspr | Fixed | RHSA-2015:2068 | 18.11.2015 |
Показывать по
Дополнительная информация
Статус:
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape P ...
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
EPSS
6.8 Medium
CVSS2