exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 25

ELSA-2016-0197

больше 9 лет назад

ELSA-2016-0197: firefox security update (CRITICAL)

EPSS: Низкий

ELSA-2016-0594

больше 9 лет назад

ELSA-2016-0594: graphite2 security, bug fix, and enhancement update (IMPORTANT)

EPSS: Низкий

CVE-2016-1522

больше 9 лет назад

Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.

CVSS3: 8.8

EPSS: Низкий

CVE-2016-1522

больше 9 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2016-1522

больше 9 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2016-1522

больше 9 лет назад

Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefo ...

CVSS3: 8.8

EPSS: Низкий

openSUSE-SU-2016:0875-1

больше 9 лет назад

Security update for graphite2

EPSS: Низкий

SUSE-SU-2016:0779-1

больше 9 лет назад

Security update for graphite2

EPSS: Низкий

GHSA-g9c3-vp28-w6w3

больше 3 лет назад

CVSS3: 8.8

EPSS: Низкий

BDU:2016-00574

больше 9 лет назад

Уязвимость браузера Firefox ESR, программного средства рендеринга Graphite 2, почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

CVSS2: 9.3

EPSS: Низкий

CVE-2016-1521

больше 9 лет назад

The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.

CVSS3: 8.8

EPSS: Низкий

CVE-2016-1521

больше 9 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2016-1521

больше 9 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2016-1521

больше 9 лет назад

The directrun function in directmachine.cpp in Libgraphite in Graphite ...

CVSS3: 8.8

EPSS: Низкий

CVE-2016-1523

больше 9 лет назад

The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, mishandles a return value, which allows remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.

CVSS3: 6.5

EPSS: Низкий

CVE-2016-1523

больше 9 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2016-1523

больше 9 лет назад

CVSS3: 6.5

EPSS: Низкий

CVE-2016-1523

больше 9 лет назад

The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Gra ...

CVSS3: 6.5

EPSS: Низкий

GHSA-765v-rgjj-3mrx

больше 3 лет назад

CVSS3: 8.8

EPSS: Низкий

BDU:2016-00573

больше 9 лет назад

Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании, получить конфиденциальную информацию или выполнить произвольный код

CVSS2: 9.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
ELSA-2016-0197 ELSA-2016-0197: firefox security update (CRITICAL)			больше 9 лет назад
ELSA-2016-0594 ELSA-2016-0594: graphite2 security, bug fix, and enhancement update (IMPORTANT)			больше 9 лет назад
CVE-2016-1522 Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.	CVSS3: 8.8	2% Низкий	больше 9 лет назад
CVE-2016-1522 Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.	CVSS2: 6.8	2% Низкий	больше 9 лет назад
CVE-2016-1522 Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.	CVSS3: 8.8	2% Низкий	больше 9 лет назад
CVE-2016-1522 Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefo ...	CVSS3: 8.8	2% Низкий	больше 9 лет назад
openSUSE-SU-2016:0875-1 Security update for graphite2			больше 9 лет назад
SUSE-SU-2016:0779-1 Security update for graphite2			больше 9 лет назад
GHSA-g9c3-vp28-w6w3 Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.	CVSS3: 8.8	2% Низкий	больше 3 лет назад
BDU:2016-00574 Уязвимость браузера Firefox ESR, программного средства рендеринга Graphite 2, почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код	CVSS2: 9.3	2% Низкий	больше 9 лет назад
CVE-2016-1521 The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.	CVSS3: 8.8	1% Низкий	больше 9 лет назад
CVE-2016-1521 The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.	CVSS2: 6.8	1% Низкий	больше 9 лет назад
CVE-2016-1521 The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.	CVSS3: 8.8	1% Низкий	больше 9 лет назад
CVE-2016-1521 The directrun function in directmachine.cpp in Libgraphite in Graphite ...	CVSS3: 8.8	1% Низкий	больше 9 лет назад
CVE-2016-1523 The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, mishandles a return value, which allows remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.	CVSS3: 6.5	1% Низкий	больше 9 лет назад
CVE-2016-1523 The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, mishandles a return value, which allows remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.	CVSS2: 6.8	1% Низкий	больше 9 лет назад
CVE-2016-1523 The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, mishandles a return value, which allows remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font.	CVSS3: 6.5	1% Низкий	больше 9 лет назад
CVE-2016-1523 The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Gra ...	CVSS3: 6.5	1% Низкий	больше 9 лет назад
GHSA-765v-rgjj-3mrx The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.	CVSS3: 8.8	1% Низкий	больше 3 лет назад
BDU:2016-00573 Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании, получить конфиденциальную информацию или выполнить произвольный код	CVSS2: 9.3	1% Низкий	больше 9 лет назад

Уязвимостей на страницу