Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1946

Опубликовано: 31 янв. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 10
CVSS3: 9.8

Описание

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

РелизСтатусПримечание
devel

released

44.0+build3-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [44.0+build3-0ubuntu0.14.04.1]]
precise

released

44.0+build3-0ubuntu0.12.04.1
trusty

released

44.0+build3-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [44.0+build3-0ubuntu0.14.04.1]
upstream

released

44.0
vivid

released

44.0+build3-0ubuntu0.15.04.1
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

44.0+build3-0ubuntu0.15.10.1

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
precise

not-affected

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

vivid

ignored

end of life
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03529
Низкий

10 Critical

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1946

redhat
около 10 лет назад

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

nvd логотип

CVE-2016-1946

CVSS3: 9.8
nvd
около 10 лет назад

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

debian логотип

CVE-2016-1946

CVSS3: 9.8
debian
около 10 лет назад

The MoofParser::Metadata function in binding/MoofParser.cpp in libstag ...

github логотип

GHSA-985w-c5f5-7374

CVSS3: 9.8
github
больше 3 лет назад

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

fstec логотип

BDU:2016-00512

fstec
около 10 лет назад

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

EPSS

Процентиль: 87%
0.03529
Низкий

10 Critical

CVSS2

9.8 Critical

CVSS3