SUSE CVE-2016-1521

The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a...

Mozilla Firefox and Firefox ESR Graphite 2 Arbitrary Code Execution Vulnerability

Mozilla FirefoxFirefox is an open source web browser; Firefox ESR is an extended support version of Firefox.Graphite is a set of enterprise-class open source system monitoring tools written in Python, using the Django framework , it is through a third-party tools or plug-ins for data collection ,...

CVE-2016-1521

The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a...

PT-2016-1276 · Mozilla +5 · Firefox Esr +7

Name of the Vulnerable Software and Affected Versions: Graphite 2 version 1.2.4 Mozilla Firefox versions prior to 43.0 Firefox ESR versions prior to 38.6.1 Description: The issue is related to the directrun function in directmachine.cpp, which does not validate a certain skip operation. This allo...