Описание
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 61.0+build3-0ubuntu0.17.10.1 |
| bionic | released | 61.0+build3-0ubuntu0.18.04.1 |
| devel | released | 61.0.1+build1-0ubuntu0.18.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [61.0+build3-0ubuntu0.14.04.2]] |
| precise/esm | DNE | |
| trusty | released | 61.0+build3-0ubuntu0.14.04.2 |
| trusty/esm | DNE | trusty was released [61.0+build3-0ubuntu0.14.04.2] |
| upstream | released | 61.0 |
| xenial | released | 61.0+build3-0ubuntu0.16.04.2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:52.9.1+build3-0ubuntu0.17.10.1 |
| bionic | released | 1:52.9.1+build3-0ubuntu0.18.04.1 |
| devel | released | 1:60.2.1+build1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:52.9.1+build3-0ubuntu0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 1:52.9.1+build3-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1:52.9.1+build3-0ubuntu0.14.04.1] |
| upstream | released | 52.9.0 |
| xenial | released | 1:52.9.1+build3-0ubuntu0.16.04.1 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
An invalid grid size during QCMS (color profile) transformations can r ...
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
Уязвимость браузеров Firefox и Firefox ESR и почтового клиента Thunderbird, связанная с недопустимым размером сетки во время QCMS-преобразований, позволяющая нарушителю раскрыть защищаемую информацию
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3