1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
|
Candidate: CVE-2016-1971
PublicDate: 2016-03-13
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1971
https://www.mozilla.org/en-US/security/advisories/mfsa2016-32/
Description:
The I420VideoFrame::CreateFrame function in the WebRTC implementation in
Mozilla Firefox before 45.0 on Windows omits an unspecified status check,
which might allow remote attackers to cause a denial of service (memory
corruption) or possibly have other impact via unknown vectors.
Ubuntu-Description:
Notes:
chrisccoulson> Windows only, according to Mozilla advisory
Bugs:
Priority: medium
Discovered-by: Ronald Crane
Assigned-to: chrisccoulson
Patches_firefox:
upstream_firefox: released (45.0)
precise_firefox: not-affected
trusty_firefox: not-affected
vivid/ubuntu-core_firefox: DNE
vivid/stable-phone-overlay_firefox: DNE
wily_firefox: not-affected
devel_firefox: not-affected (45.0+build2-0ubuntu1)
Patches_thunderbird:
Priority_thunderbird: low
upstream_thunderbird: not-affected
precise_thunderbird: not-affected
trusty_thunderbird: not-affected
vivid/ubuntu-core_thunderbird: DNE
vivid/stable-phone-overlay_thunderbird: DNE
wily_thunderbird: not-affected
devel_thunderbird: not-affected
|