Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-2839

Опубликовано: 05 авг. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

Описание

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allows remote attackers to cause a denial of service (application crash) via a crafted video.

РелизСтатусПримечание
devel

not-affected

48.0+build2-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [48.0+build2-0ubuntu0.14.04.1]]
precise

released

48.0+build2-0ubuntu0.12.04.1
trusty

released

48.0+build2-0ubuntu0.14.04.1
trusty/esm

DNE

trusty was released [48.0+build2-0ubuntu0.14.04.1]
upstream

released

48
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

released

48.0+build2-0ubuntu0.16.04.1

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
precise

not-affected

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%
0.00748
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-2839

CVSS3: 5.6
redhat
больше 9 лет назад

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allows remote attackers to cause a denial of service (application crash) via a crafted video.

nvd логотип

CVE-2016-2839

CVSS3: 6.5
nvd
больше 9 лет назад

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allows remote attackers to cause a denial of service (application crash) via a crafted video.

debian логотип

CVE-2016-2839

CVSS3: 6.5
debian
больше 9 лет назад

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux ...

github логотип

GHSA-x47g-jqx4-jpfm

CVSS3: 6.5
github
больше 3 лет назад

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allows remote attackers to cause a denial of service (application crash) via a crafted video.

suse-cvrf логотип

SUSE-SU-2016:2195-1

suse-cvrf
больше 9 лет назад

Security update for MozillaFirefox

EPSS

Процентиль: 73%
0.00748
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3