81 matches found
The vulnerability of the Graphite 2 rendering software allows a perpetrator to trigger a service failure or cause other adverse effects.
The vulnerability of the graphite2::TtfUtil::GetTableInfo function in the Graphite rendering software does not initialize memory for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects using a specially created Graphite sma...
The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.
The vulnerability of the graphite2::TtfUtil::CmapSubtable12Lookup function TtfUtil.cpp for Firefox ESR and Firefox browsers can be exploited due to buffer overflows. Exploiting this vulnerability may allow an attacker to cause service interruptions or other effects by using a specially crafted...
The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.
The vulnerability of the graphite2::FileFace::gettablefn function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, means that memory is not initialized for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service...
The vulnerability of Firefox ESR, the rendering software Graphite 2, and the email client Thunderbird, which allows a hacker to trigger a service failure
The vulnerability of the SillMap::readFace function in the Libgraphite component of the Firefox ESR browser and the Graphite 2 rendering software, as well as the Thunderbird email client, is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause a...
Vulnerabilities of Firefox ESR and Firefox browsers, the rendering software Graphite 2, and the email client Thunderbird, which allow a hacker to trigger a service failure, obtain confidential information, or execute arbitrary codes
The vulnerability of the directrun function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software and the Thunderbird email client, is caused by buffer overflows. Exploiting this vulnerability allows an attacker to execute arbitrary code, obtain confidential...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart font,...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
The graphite2::FileFace::gettablefn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown othe...
graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)
The Machine::Code::decoder::analysis::setref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a crafted Graphite smart font...
DEBIAN-CVE-2016-2799
Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font...
DEBIAN-CVE-2016-2797
The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...
DEBIAN-CVE-2016-2795
The graphite2::FileFace::gettablefn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other...
DEBIAN-CVE-2016-2794
The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite...
DEBIAN-CVE-2016-2791
The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart font...
DEBIAN-CVE-2016-2790
The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown othe...
DEBIAN-CVE-2016-1977
The Machine::Code::decoder::analysis::setref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a crafted Graphite smart font...
Mozilla Firefox and Firefox ESR Graphite 2 code execution vulnerability (CNVD-2016-01595)
Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A security vulnerability exists in Mozilla Firefox and Firefox ESR...
Mozilla Firefox and Firefox ESR Graphite 2 code execution vulnerability (CNVD-2016-01596)
Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A security vulnerability exists in Mozilla Firefox and Firefox ESR...