CVE

Id
89609  
CVE No.
CVE-2016-2790  
Status
Candidate  
Description
The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted Graphite smart font.  
Phase
Assigned (20160301)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
775717 89609 CVE-2016-2790 CONFIRM:http://www.mozilla.org/security/announce/2016/mfsa2016-37.html  View
775718 89609 CVE-2016-2790 CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=1243464  View
775719 89609 CVE-2016-2790 CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html  View
775720 89609 CVE-2016-2790 DEBIAN:DSA-3510  View
775721 89609 CVE-2016-2790 URL:http://www.debian.org/security/2016/dsa-3510  View
775722 89609 CVE-2016-2790 DEBIAN:DSA-3515  View
775723 89609 CVE-2016-2790 URL:http://www.debian.org/security/2016/dsa-3515  View
775724 89609 CVE-2016-2790 DEBIAN:DSA-3520  View
775725 89609 CVE-2016-2790 URL:http://www.debian.org/security/2016/dsa-3520  View
775726 89609 CVE-2016-2790 GENTOO:GLSA-201605-06  View
775727 89609 CVE-2016-2790 URL:https://security.gentoo.org/glsa/201605-06  View
775728 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:0894  View
775729 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00091.html  View
775730 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:1767  View
775731 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00006.html  View
775732 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:1769  View
775733 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00007.html  View
775734 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:1778  View
775735 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00008.html  View
775736 89609 CVE-2016-2790 SUSE:SUSE-SU-2016:0909  View
775737 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00093.html  View
775738 89609 CVE-2016-2790 SUSE:SUSE-SU-2016:0727  View
775739 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00027.html  View
775740 89609 CVE-2016-2790 SUSE:SUSE-SU-2016:0777  View
775741 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00050.html  View
775742 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:0731  View
775743 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00029.html  View
775744 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:0733  View
775745 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00031.html  View
775746 89609 CVE-2016-2790 SUSE:SUSE-SU-2016:0820  View
775747 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00068.html  View
775748 89609 CVE-2016-2790 SUSE:openSUSE-SU-2016:0876  View
775749 89609 CVE-2016-2790 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00089.html  View
775750 89609 CVE-2016-2790 UBUNTU:USN-2917-2  View
775751 89609 CVE-2016-2790 URL:http://www.ubuntu.com/usn/USN-2917-2  View
775752 89609 CVE-2016-2790 UBUNTU:USN-2917-3  View
775753 89609 CVE-2016-2790 URL:http://www.ubuntu.com/usn/USN-2917-3  View
775754 89609 CVE-2016-2790 UBUNTU:USN-2934-1  View
775755 89609 CVE-2016-2790 URL:http://www.ubuntu.com/usn/USN-2934-1  View
775756 89609 CVE-2016-2790 UBUNTU:USN-2917-1  View
775757 89609 CVE-2016-2790 URL:http://www.ubuntu.com/usn/USN-2917-1  View
775758 89609 CVE-2016-2790 UBUNTU:USN-2927-1  View
775759 89609 CVE-2016-2790 URL:http://www.ubuntu.com/usn/USN-2927-1  View
775760 89609 CVE-2016-2790 BID:84222  View
775761 89609 CVE-2016-2790 URL:http://www.securityfocus.com/bid/84222  View
775762 89609 CVE-2016-2790 SECTRACK:1035215  View

Related JVN