1
PublicDateAtUSN: 2016-09-22
2
Candidate: CVE-2016-5271
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5271
6
https://www.mozilla.org/en-US/security/advisories/mfsa2016-85/
7
https://usn.ubuntu.com/usn/usn-3076-1
9
The PropertyProvider::GetSpacingInternal function in Mozilla Firefox before
10
49.0 allows remote attackers to cause a denial of service (out-of-bounds
11
read and application crash) via text runs in conjunction with a "display:
12
contents" Cascading Style Sheets (CSS) property.
18
Assigned-to: chrisccoulson
21
upstream_firefox: released (49.0)
22
precise_firefox: released (49.0+build4-0ubuntu0.12.04.1)
23
trusty_firefox: released (49.0+build4-0ubuntu0.14.04.1)
24
vivid/ubuntu-core_firefox: DNE
25
vivid/stable-phone-overlay_firefox: DNE
26
xenial_firefox: released (49.0+build4-0ubuntu0.16.04.1)
27
yakkety_firefox: released (49.0+build4-0ubuntu2)
28
devel_firefox: released (49.0+build4-0ubuntu2)
31
upstream_thunderbird: not-affected
32
precise_thunderbird: not-affected
33
trusty_thunderbird: not-affected
34
vivid/ubuntu-core_thunderbird: DNE
35
vivid/stable-phone-overlay_thunderbird: DNE
36
xenial_thunderbird: not-affected
37
yakkety_thunderbird: not-affected
38
devel_thunderbird: not-affected