The vulnerability of Firefox ESR, the rendering software Graphite 2, and the email client Thunderbird, which allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Code.cpp function in the Libgraphite component of the Firefox ESR browser and the Graphite 2 rendering software, as well as in the Thunderbird email client, is caused by a buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to cause service...