Описание
Security update for graphite2
This update for graphite2 fixes the following issues:
-
CVE-2016-1521: The directrun function in directmachine.cpp in Libgraphite did not validate a certain skip operation, which allowed remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.
-
CVE-2016-1523: The SillMap::readFace function in FeatureMap.cpp in Libgraphite mishandled a return value, which allowed remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.
-
CVE-2016-1526: The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite incorrectly validated a size value, which allowed remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.
Список пакетов
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
Ссылки
- Link for SUSE-SU-2016:0779-1
- E-Mail link for SUSE-SU-2016:0779-1
- SUSE Security Ratings
- SUSE Bug 965803
- SUSE Bug 965807
- SUSE Bug 965810
- SUSE CVE CVE-2016-1521 page
- SUSE CVE CVE-2016-1523 page
- SUSE CVE CVE-2016-1526 page
Описание
The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.
Затронутые продукты
Ссылки
- CVE-2016-1521
- SUSE Bug 965803
- SUSE Bug 965806
- SUSE Bug 965807
- SUSE Bug 965810
Описание
The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, mishandles a return value, which allows remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.
Затронутые продукты
Ссылки
- CVE-2016-1523
- SUSE Bug 965803
- SUSE Bug 965806
- SUSE Bug 965807
- SUSE Bug 965810
- SUSE Bug 967087
Описание
The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, incorrectly validates a size value, which allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.
Затронутые продукты
Ссылки
- CVE-2016-1526
- SUSE Bug 965803
- SUSE Bug 965806
- SUSE Bug 965807
- SUSE Bug 965810
- SUSE Bug 966438