← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to retired/CVE-2016-1969

  • Committer: Tyler Hicks
  • Date: 2016-03-14 22:08:30 UTC
  • Revision ID: tyhicks@canonical.com-20160314220830-81cfffydcjpf7bqx
partial process_cves run

Show diffs side-by-side

added added

removed removed

Lines of Context:
retired/CVE-2016-1969
 
1
Candidate: CVE-2016-1969
 
2
PublicDate: 2016-03-13
 
3
References:
 
4
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1969
 
5
 https://bugzilla.mozilla.org/show_bug.cgi?id=1242322
 
6
 http://www.mozilla.org/security/announce/2016/mfsa2016-38.html
 
7
Description:
 
8
 The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox
 
9
 before 45.0 and Firefox ESR 38.x before 38.6.1, allows remote attackers to
 
10
 cause a denial of service (out-of-bounds write) or possibly have
 
11
 unspecified other impact via a crafted Graphite smart font.
 
12
Ubuntu-Description:
 
13
Notes:
 
14
Bugs:
 
15
Priority: medium
 
16
Discovered-by:
 
17
Assigned-to: chrisccoulson
 
18
 
 
19
Patches_firefox:
 
20
upstream_firefox: released (45.0)
 
21
precise_firefox: released (45.0+build2-0ubuntu0.12.04.1)
 
22
trusty_firefox: released (45.0+build2-0ubuntu0.14.04.1)
 
23
vivid/ubuntu-core_firefox: DNE
 
24
vivid/stable-phone-overlay_firefox: DNE
 
25
wily_firefox: released (45.0+build2-0ubuntu0.15.10.1)
 
26
devel_firefox: released (45.0+build2-0ubuntu1)
 
27
 
 
28
Patches_thunderbird:
 
29
Priority_thunderbird: low
 
30
upstream_thunderbird: not-affected
 
31
precise_thunderbird: not-affected
 
32
trusty_thunderbird: not-affected
 
33
vivid/ubuntu-core_thunderbird: DNE
 
34
vivid/stable-phone-overlay_thunderbird: DNE
 
35
wily_thunderbird: not-affected
 
36
devel_thunderbird: not-affected