CVE-2017-7960

Опубликовано: 19 апр. 2017

Источник: ubuntu

Приоритет: low

CVSS2: 4.3

CVSS3: 5.5

Описание

The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	DNE
disco	ignored	end of life
eoan	not-affected	0.6.13-1
esm-infra-legacy/trusty	released	0.6.8-2ubuntu1+esm1
esm-infra/bionic	not-affected	0.6.12-2
esm-infra/focal	not-affected	0.6.13-1
esm-infra/xenial	released	0.6.11-1ubuntu0.1~esm1

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7960

CVSS3: 3.3

redhat

почти 9 лет назад

The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.

CVE-2017-7960

CVSS3: 5.5

nvd

почти 9 лет назад

The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.

CVE-2017-7960

CVSS3: 5.5

debian

почти 9 лет назад

The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 an ...

GHSA-wmq5-69f7-qrqx

CVSS3: 5.5

github

больше 3 лет назад

The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.

openSUSE-SU-2019:1575-1

suse-cvrf

больше 6 лет назад

Security update for libcroco

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-7960

Описание

Пакет libcroco

Ссылки на источники

Связанные уязвимости