The vulnerability of Firefox ESR, the rendering software Graphite 2, and the email client Thunderbird, which allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Code.cpp function in the Libgraphite component of the Firefox ESR browser and the Graphite 2 rendering software, as well as in the Thunderbird email client, is caused by a buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to cause service...

CVE-2016-1522

Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service heap-based buffer overflow or possibly execute arbitrary...

Heap overflow

Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service heap-based buffer overflow or possibly execute arbitrary...

CVE-2016-1522

Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service heap-based buffer overflow or possibly execute arbitrary...