3 matches found
PT-2016-1276 · Mozilla +5 · Firefox Esr +7
Name of the Vulnerable Software and Affected Versions: Graphite 2 version 1.2.4 Mozilla Firefox versions prior to 43.0 Firefox ESR versions prior to 38.6.1 Description: The issue is related to the directrun function in directmachine.cpp, which does not validate a certain skip operation. This allo...
UBUNTU-CVE-2015-7222
Integer underflow in the Metadata::setData function in MetaData.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code or cause a denial of service incorrect memory allocation and application crash via an MP4 video...
PT-2016-1277 · Mozilla +5 · Firefox Esr +8
Name of the Vulnerable Software and Affected Versions: Graphite 2 versions 1.2.4 and earlier Mozilla Firefox versions prior to 43.0 Mozilla Firefox ESR versions 38.x prior to 38.6.1 Description: The issue is caused by a heap-based buffer overflow in the Code.cpp function of the Libgraphite...