Lucene search
K

425 matches found

OSV
OSV
added 2024/01/02 12:0 a.m.66 views

ALSA-2024:0001 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.6.0. Security Fixes: Mozilla: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver CVE-2023-6856 Mozilla: Memory safety bugs fixed in Firefox 121, Firefo...

8.8CVSS8.8AI score0.20472EPSS
Exploits0References24
NVD
NVD
added 2023/12/19 2:15 p.m.24 views

CVE-2023-6860

The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox. This vulnerability affects Firefox ESR 115.6, Thunderbird 115.6, and Firefox 121...

6.5CVSS0.00958EPSS
Exploits0References9
Cvelist
Cvelist
added 2023/12/19 1:38 p.m.18 views

CVE-2023-6860

The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox. This vulnerability affects Firefox ESR 115.6, Thunderbird 115.6, and Firefox 121...

6.9AI score0.00958EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2023/12/19 1:38 p.m.26 views

CVE-2023-6860

The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox. This vulnerability affects Firefox ESR 115.6, Thunderbird 115.6, and Firefox 121...

6.5CVSS7.2AI score0.00958EPSS
Exploits0
OSV
OSV
added 2023/05/01 3:32 a.m.10 views

MAL-2023-1320 Malicious code in texture-allocator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 295589602f0c0baf1ed21fb915589780ccee883cf28e0458728a211b840b4bae The OpenSSF Package Analysis project identified 'texture-allocator' @ 99.99.80 npm as malicious. It is considered malicious because: - The packa...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/05/01 3:32 a.m.4 views

Malicious code in texture-allocator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 295589602f0c0baf1ed21fb915589780ccee883cf28e0458728a211b840b4bae The OpenSSF Package Analysis project identified 'texture-allocator' @ 99.99.80 npm as malicious. It is considered malicious because: - The packa...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2023-0020)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01265EPSS
Exploits0References4
Snyk
Snyk
added 2023/03/01 8:18 a.m.2 views

Malicious Package

Overview texture-allocator is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

9.8CVSS7.1AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:46 a.m.3 views

SUSE CVE-2012-2826

Google Chrome before 20.0.1132.43 does not properly implement texture conversion, which allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

5CVSS9AI score0.0109EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.4 views

SUSE CVE-2013-6665

Heap-based buffer overflow in the ResourceProvider::InitializeSoftware function in cc/resources/resourceprovider.cc in Google Chrome before 33.0.1750.146 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large texture size that triggers improper...

7.5CVSS9.3AI score0.01368EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:22 a.m.4 views

SUSE CVE-2015-0824

The mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 36.0 allows remote attackers to cause a denial of service out-of-bounds write of zero values, and application crash via vectors that trigger use of DrawTarget and the Cairo library for image drawing...

5CVSS8.6AI score0.03656EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:14 a.m.4 views

SUSE CVE-2015-7212

Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation...

7.5CVSS8AI score0.04049EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 5:5 a.m.3 views

SUSE CVE-2016-2828

Use-after-free vulnerability in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via WebGL content that triggers texture access after destruction of the texture's recycle pool...

8.8CVSS7.9AI score0.03028EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.3 views

SUSE CVE-2017-2927

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution...

8.8CVSS9AI score0.08861EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.5 views

SUSE CVE-2017-2933

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Successful exploitation could lead to arbitrary code execution...

8.8CVSS9AI score0.2991EPSS
Exploits3References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.4 views

SUSE CVE-2017-2934

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when parsing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution...

8.8CVSS9AI score0.2991EPSS
Exploits3References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.4 views

SUSE CVE-2017-3078

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the Adobe Texture Format ATF module. Successful exploitation could lead to arbitrary code execution...

10CVSS7.9AI score0.30886EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.3 views

SUSE CVE-2017-5580

The parseinstruction function in gallium/auxiliary/tgsi/tgsitext.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and process crash via a crafted texture instruction...

7.1CVSS6.4AI score0.00493EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.4 views

SUSE CVE-2018-6079

Inappropriate sharing of TEXTURE2DARRAY/TEXTURE3D data between tabs in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS8.5AI score0.01709EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.2 views

SUSE CVE-2018-12294

WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object...

8.8CVSS8.9AI score0.02457EPSS
Exploits0References3
Rows per page
Query Builder