28 matches found
CVE-2017-5436
CVE-2017-5436 is an out-of-bounds write in the Graphite 2 library triggered by a malicious Graphite font, causing a potentially exploitable crash. The issue was fixed in Graphite 2 and in Mozilla products; affected Mozilla components include Thunderbird < 52.1, Firefox ESR < 45.9 and < 5...
CVE-2016-1977
Summary: CVE-2016-1977 and related Graphite 2 vulnerabilities affect Graphite font rendering (library graphite2) used by Mozilla Firefox/Thunderbird. The issues stem from memory safety bugs in Graphite 2 (version 1.3.5 and earlier) that could allow remote code execution or crashes when processing...
CVE-2016-2796
CVE-2016-2796 describes a heap-based buffer overflow in the Graphite 2 font library (graphite2::vm::Machine::Code::Code) prior to 1.3.6. The vulnerability affected Graphite 2 as used by Mozilla Firefox (before 45.0) and Firefox ESR 38.x (before 38.7), potentially enabling a remote attacker to cau...
CVE-2016-2800
The Graphite 2 font rendering library is affected by CVE-2016-2800 and CVE-2016-2792. In Graphite 2, the vulnerability resides in graphite2::Slot::getAttr (Slot.cpp) and can be triggered when processing crafted Graphite fonts, as used by Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to...
CVE-2017-7774
CVE-2017-7774 is an out-of-bounds read in graphite2::Silf::readGraphite within the Graphite2 library used by Firefox prior to version 54. Affected component: graphite2 library; affected product is Firefox (pre-54). Root cause: out-of-bounds read in readGraphite. Impact per sources: memory disclos...
CVE-2017-7778
CVE-2017-7778 relates to multiple vulnerabilities in Graphite2 (upstream 1.3.10). The issues include out-of-bounds reads, buffer overflow reads/writes, and use of uninitialized memory in Graphite2, and are addressed by upgrading to Graphite2 1.3.10. Publicly affected products in the CVE record in...
CVE-2017-7772
CVE-2017-7772 describes a heap-based buffer overflow in the Graphite2 library, specifically in lz4::decompress, affecting Firefox prior to 54. The issue is triggered when processing crafted font data, potentially allowing a crash or arbitrary code execution in the context of an application using ...
CVE-2016-1521
CVE-2016-1521 is a vulnerability in Graphite 2’s Libgraphite (directrun in directmachine.cpp) where skipping operations are not validated, enabling a crafted Graphite font to cause remote code execution, information disclosure, or denial of service. Affected products include Mozilla Firefox (and ...
CVE-2017-7771
CVE-2017-7771 is an out-of-bounds read in the Graphite2 font-rendering library, specifically in graphite2::Pass::readPass, reported for Firefox prior to 54. Public advisories and vendor notes confirm Graphite2 vulnerabilities that can lead to crashes or memory disclosure when processing malformed...
CVE-2016-2792
CVE-2016-2792 affects Graphite2 (graphite2) in Graphite font rendering used by Firefox
CVE-2017-7776
Graphite2 (graphite2) contains multiple vulnerabilities including CVE-2017-7776, a heap-based buffer overflow (read) in graphite2::Silf::getClassGlyph, potentially triggering crashes or code execution when processing malformed fonts. This family affects Firefox prior to 54 and various distributio...
CVE-2016-2797
Graphite 2 before 1.3.6 is affected by CVE-2016-2797 via the TtfUtil::CmapSubtable12Lookup path. The vulnerability exists when Graphite is used by Firefox before 45.0 and Firefox ESR 38.x before 38.7, allowing a crafted Graphite smart font to cause a denial-of-service (buffer over-read) or simila...
CVE-2017-7773
CVE-2017-7773 is a Graphite2 heap-based buffer overflow in the lz4::decompress implementation (src/Decompressor) that affects Firefox prior to 54. The issue can cause a crash and, per advisories, may allow arbitrary code execution under certain conditions. Affected products are those using Graphi...
CVE-2017-7777
CVE-2017-7777 concerns the Graphite2 font rendering library. Multiple connected sources confirm a defect in graphite2::GlyphCache::Loader::read_glyph due to use of uninitialized memory in the Graphite2 codebase, affecting Firefox before 54 and other products using graphite2. Exploitation could ca...
CVE-2016-2793
CVE-2016-2793 affects the Graphite 2 font library (CachedCmap.cpp) up to version 1.3.5 used by Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7. A crafted Graphite font can trigger a buffer over-read, potentially causing a denial of service or other impact. Remediation, where availabl...
CVE-2016-2790
The CVE-2016-2790 issue is in Graphite 2 prior to 1.3.6 (graphite2) used by Firefox/Firefox ESR. The root cause is uninitialized memory in Graphite’s TtfUtil::GetTableInfo, enabling a remote attacker to cause a denial of service or potentially other impact via a crafted Graphite font. Impact is t...
CVE-2016-2798
The CVE-2016-2798 issue affects the Graphite2 font library (Graphite 2) prior to version 1.3.6 used by Mozilla Firefox/Firefox ESR. The vulnerability arises in Graphite2::GlyphCache::Loader::Loader, allowing a remote attacker to trigger a denial of service via a crafted Graphite font, with potent...
CVE-2016-2795
Graphite 2 vulnerability CVE-2016-2795 affects the Graphite font engine library. The function graphite2::FileFace::get_table_fn in Graphite 2 before 1.3.6 does not initialize memory for an unspecified data structure, enabling a remote attacker to cause denial of service (and possibly other impact...
CVE-2016-1522
CVE-2016-1522 affects Graphite 2 Libgraphite (Graphite2 1.2.4) used in Firefox/Firefox ESR before 43.0. Code.cpp does not account for recursive load calls during a size check, enabling a remote attacker to trigger a denial of service (heap-based buffer overflow) or possibly execute arbitrary code...
CVE-2016-1523
CVE-2016-1523 concerns Graphite 2 Libgraphite’s SillMap::readFace in FeatureMap.cpp, used by Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1. A mis-handled return value can allow remote attackers to cause denial of service via a crafted Graphite smart font. Affected component is Gr...
CVE-2016-1526
CVE-2016-1526 concerns Graphite2 Libgraphite’s TtfUtil:LocaLookup in Graphite 2 1.2.4 used by Mozilla Firefox before 43.0 and ESR 38.x before 38.6.1. The bug stems from incorrect validation of a size value in TtfUtil.cpp, enabling remote attackers to trigger an out-of-bounds read, potentially lea...
CVE-2016-2799
CVE-2016-2799 is a heap-based buffer overflow in graphite2::Slot::setAttr in Graphite2 up to 1.3.6, impacting Firefox <45.0 and Firefox ESR =1.3.7) to remediate. Monitor vendor advisories for exact fixed versions per distribution.
CVE-2016-2802
Summary: CVE-2016-2802 affects Graphite 2 before 1.3.6, used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7. The flaw resides in graphite2::TtfUtil::CmapSubtable4NextCodepoint and can be exploited to trigger a crash via a crafted Graphite font (buffer over-read), causing a denial...
CVE-2016-2794
The CVE-2016-2794 entry concerns Graphite 2 prior to version 1.3.6. The vulnerable function is graphite2::TtfUtil::CmapSubtable12NextCodepoint, used by Mozilla Firefox (before 45.0) and Firefox ESR 38.x (before 38.7). A crafted Graphite font can cause a buffer over-read, leading to a denial of se...
CVE-2016-2801
CVE-2016-2797 describes a vulnerability in Graphite2 where the TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6 can be triggered by a crafted Graphite font, used by Firefox before 45.0 and ESR before 38.7, leading to a denial of service via a buffer over-read. The issue is due to...
CVE-2018-7999
CVE-2018-7999 (graphite2, libgraphite2, Segment.cpp) in graphite2 1.3.11 contains a NULL pointer dereference in Segment.cpp during a dumbRendering operation triggered by a crafted .ttf file. The issue may cause a denial of service and possibly other unspecified impacts. Affected component is grap...
CVE-2016-2791
Summary: CVE-2016-2791 affects the Graphite 2 font library (graphite2) shipped with Graphite-based builds and Mozilla Firefox. The issue is in graphite2::GlyphCache::glyph, where a crafted Graphite font can trigger a buffer over-read, potentially allowing a denial of service and other unspecified...
CVE-2016-1969
CVE-2016-1969 affects Graphite 2 before 1.3.6, used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.6.1. The issue allows remote attackers to cause a denial of service (out-of-bounds write) or potentially other impacts via a crafted Graphite font. remediation details in the provided...