Описание
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 35.0+build3-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [35.0+build3-0ubuntu0.14.04.2]] |
| lucid | ignored | end of life |
| precise | released | 35.0+build3-0ubuntu0.12.04.2 |
| trusty | released | 35.0+build3-0ubuntu0.14.04.2 |
| trusty/esm | DNE | trusty was released [35.0+build3-0ubuntu0.14.04.2] |
| upstream | released | 35.0 |
| utopic | released | 35.0+build3-0ubuntu0.14.10.2 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element.
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element.
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly ...
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element.
EPSS
5 Medium
CVSS2