Lucene search

PRIOn knowledge basePRION:CVE-2015-7218

HistoryDec 16, 2015 - 11:59 a.m.

Integer overflow

2015-12-1611:59:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

JSON

The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote attackers to cause a denial of service (integer underflow, assertion failure, and application exit) via a single-byte header frame that triggers incorrect memory allocation.

CPENameOperatorVersion
fedoraeq22
fedoraeq23
firefoxle42.0
leapeq42.1
opensuseeq13.1
opensuseeq13.2

Name	Operator	Version
fedora	eq	22
fedora	eq	23
firefox	le	42.0
leap	eq	42.1
opensuse	eq	13.1
opensuse	eq	13.2

References

lists.opensuse.org/opensuse-updates/2015-12/msg00104.html

lists.opensuse.org/opensuse-updates/2016-02/msg00007.html

lists.opensuse.org/opensuse-updates/2016-02/msg00008.html

www.mozilla.org/security/announce/2015/mfsa2015-142.html

www.securityfocus.com/bid/79280

www.securitytracker.com/id/1034426

www.ubuntu.com/usn/USN-2833-1

bugzilla.mozilla.org/show_bug.cgi?id=1194818

lists.fedoraproject.org/pipermail/package-announce/2015-December/174083.html

lists.fedoraproject.org/pipermail/package-announce/2015-December/174253.html

security.gentoo.org/glsa/201512-10