1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
Candidate: CVE-2017-7961
PublicDate: 2017-04-19
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7961
https://blogs.gentoo.org/ago/2017/04/17/libcroco-heap-overflow-and-undefined-behavior/
Description:
** DISPUTED ** The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco
0.6.11 and 0.6.12 has an "outside the range of representable values of type
long" undefined behavior issue, which might allow remote attackers to cause
a denial of service (application crash) or possibly have unspecified other
impact via a crafted CSS file. NOTE: third-party analysis reports "This is
not a security issue in my view. The conversion surely is truncating the
double into a long value, but there is no impact as the value is one of the
RGB components."
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
Patches_libcroco:
upstream: https://git.gnome.org/browse/libcroco/commit/?id=9ad72875e9f08e4c519ef63d44cdbd94aa9504f7
upstream_libcroco: released (0.6.11-3)
precise_libcroco: ignored (reached end-of-life)
precise/esm_libcroco: needed
trusty_libcroco: needed
vivid/stable-phone-overlay_libcroco: ignored (reached end-of-life)
vivid/ubuntu-core_libcroco: DNE
xenial_libcroco: needed
yakkety_libcroco: ignored (reached end-of-life)
zesty_libcroco: needed
devel_libcroco: needed
|