Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.3 views

SUSE CVE-2017-5465

An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could then displayed. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and...

9.1CVSS6.7AI score0.18756EPSS
Exploits4References10
Veracode
Veracode
added 2020/05/10 11:26 p.m.36 views

Incorrect Number Generator

nss is vulnerable to incorrect number generation. The vulnerability exists as a flaw in DRBG number generation within the Network Security Services NSS library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue a...

5.3CVSS2.2AI score0.02642EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2018/06/11 9:29 p.m.27 views

CVE-2017-5462

A flaw in DRBG number generation within the Network Security Services NSS library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerabili...

5.3CVSS4.9AI score
Exploits0References10
NVD
NVD
added 2018/06/11 9:29 p.m.18 views

CVE-2017-5448

An out-of-bounds write in "ClearKeyDecryptor" while decrypting some Clearkey-encrypted media content. The "ClearKeyDecryptor" code runs within the Gecko Media Plugin GMP sandbox. If a second mechanism is found to escape the sandbox, this vulnerability allows for the writing of arbitrary data with...

8.6CVSS8.9AI score0.02067EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2017/04/20 12:0 a.m.32 views

CVE-2017-5462

A flaw in DRBG number generation within the Network Security Services NSS library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerabili...

5.3CVSS6.7AI score0.02642EPSS
Exploits0References4
Mozilla
Mozilla
added 2017/04/19 12:0 a.m.519 views

Security vulnerabilities fixed in Firefox ESR 52.1 — Mozilla

A use-after-free vulnerability in SMIL animation functions occurs when pointers to animation elements in an array are dropped from the animation controller while still in use. This results in a potentially exploitable crash. A use-after-free vulnerability occurs during transaction processing in t...

9.8CVSS1.6AI score0.04741EPSS
Exploits4References36Affected Software1
Rows per page
Query Builder