4 matches found
CVE-2017-7771
CVE-2017-7771 is an out-of-bounds read in the Graphite2 font-rendering library, specifically in graphite2::Pass::readPass, reported for Firefox prior to 54. Public advisories and vendor notes confirm Graphite2 vulnerabilities that can lead to crashes or memory disclosure when processing malformed...
Amazon Linux AMI : graphite2 (ALAS-2017-872)
Vulnerabilities in the Graphite 2 library MFSA 2017-16 A heap-based buffer overflow flaw related to 'lz4::decompress' has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code. CVE-2017-7778 Heap-buffer-overflow write...
Memory corruption
Summer Institute of Linguistics SIL Graphite 2, as used in Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey before 2.12, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to the 1 Silf::readClassMap and 2...
CVE-2012-3971
Summer Institute of Linguistics SIL Graphite 2, as used in Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey before 2.12, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to the 1 Silf::readClassMap and 2...