CVE

Id
78086  
CVE No.
CVE-2015-0823  
Status
Candidate  
Description
Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox before 36.0, might allow remote attackers to trigger problematic Developer Console information or possibly have unspecified other impact by leveraging incorrect macro expansion, related to the ots::ots_gasp_parse function.  
Phase
Assigned (20150107)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
714366 78086 CVE-2015-0823 CONFIRM:http://www.mozilla.org/security/announce/2015/mfsa2015-23.html  View
714367 78086 CVE-2015-0823 CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=1098497  View
714368 78086 CVE-2015-0823 CONFIRM:https://github.com/khaledhosny/ots/commit/003c62d28ae438aa8943cb31535563397f838a2c  View
714369 78086 CVE-2015-0823 CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html  View
714370 78086 CVE-2015-0823 GENTOO:GLSA-201504-01  View
714371 78086 CVE-2015-0823 URL:https://security.gentoo.org/glsa/201504-01  View
714372 78086 CVE-2015-0823 SUSE:openSUSE-SU-2015:0404  View
714373 78086 CVE-2015-0823 URL:http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.html  View
714374 78086 CVE-2015-0823 SUSE:openSUSE-SU-2015:0570  View
714375 78086 CVE-2015-0823 URL:http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.html  View
714376 78086 CVE-2015-0823 UBUNTU:USN-2505-1  View
714377 78086 CVE-2015-0823 URL:http://www.ubuntu.com/usn/USN-2505-1  View
714378 78086 CVE-2015-0823 BID:72754  View
714379 78086 CVE-2015-0823 URL:http://www.securityfocus.com/bid/72754  View
714380 78086 CVE-2015-0823 SECTRACK:1031791  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
5510 JVNDB-2015-000016 Android 版 スマホ通帳における情報管理不備の脆弱性 Android 版 スマホ通帳には、ユーザによって入力された情報をログに出力してしまう問題が存在します。 CVE-2015-0875 78086 2.6 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000016.html  View