Lucene search
Mozilla FoundationMFSA2015-83HistoryAug 11, 2015 - 12:00 a.m.
Overflow issues in libstagefright — Mozilla
2015-08-1100:00:00
Mozilla Foundation
www.mozilla.org
12
0.115 Low
EPSS
Percentile
95.2%
An anonymous researcher reported, via TippingPoint’s Zero Day Initiative, two integer overflows in the libstagefright library that could be triggered by a malicious ‘saio’ chunk in an MPEG4 video. These overflows allowed for potential arbitrary code execution. This issue was independently reported by security researcher laf.intel.
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4479
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4480
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4493
bugzilla.mozilla.org/show_bug.cgi?id=1144107
bugzilla.mozilla.org/show_bug.cgi?id=1170344
bugzilla.mozilla.org/show_bug.cgi?id=1185115
bugzilla.mozilla.org/show_bug.cgi?id=1186718
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-83) - Linux
2021-11-11 00:00:00
Debian Security Advisory DSA 3333-1 (iceweasel - security update)
2015-08-12 00:00:00
Ubuntu: Security Advisory (USN-2702-2)
2015-08-12 00:00:00
prion
prion
Integer overflow
2015-08-16 01:59:00
Integer overflow
2015-08-16 01:59:00
Heap overflow
2015-08-16 01:59:00
cve
cve
ubuntucve
ubuntucve
cvelist
cvelist
zdi
zdi
nessus
nessus
Debian DSA-3333-1 : iceweasel - security update
2015-08-13 00:00:00
RHEL 5 / 6 / 7 : firefox (RHSA-2015:1586)
2015-08-12 00:00:00
debian
debian
[SECURITY] [DSA 3333-1] iceweasel security update
2015-08-12 10:24:29
android
android
CVE-2015-1539
2015-08-01 00:00:00
veracode
veracode
Information Disclosure
2019-05-02 05:41:47
Arbitrary Code Execution
2019-05-02 05:41:48
Use-after-free Vulnerability
2019-05-02 05:42:03
redhat
redhat
(RHSA-2015:1586) Critical: firefox security update
2015-08-11 00:00:00
oraclelinux
oraclelinux
firefox security update
2015-08-11 00:00:00
mageia
mageia
Updated firefox packages fixes security vulnerabilities
2015-08-11 23:22:53
centos
centos
firefox security update
2015-08-11 20:36:44
ubuntu
ubuntu
Firefox regression
2015-08-20 00:00:00
Ubufox update
2015-08-11 00:00:00
Firefox vulnerabilities
2015-08-11 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-08-11 00:00:00
archlinux
archlinux
firefox: multiple issues
2015-08-12 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2015-08-14 19:09:37
Security update for MozillaFirefox (important)
2015-08-14 19:10:03
Security update for MozillaFirefox, mozilla-nss (important)
2015-09-10 17:10:07
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Firefox affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance
2018-06-17 22:30:13
Security Bulletin: Multiple vulnerabilities of Mozilla Firefox in IBM Storwize V7000 Unified
2018-06-18 00:09:54
Security Bulletin: Mozilla Firefox vulnerability issues in IBM SONAS
2018-06-18 00:09:55
kaspersky
kaspersky
KLA10643 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-08-11 00:00:00
securityvulns
securityvulns
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00