CVE

Id
89611  
CVE No.
CVE-2016-2792  
Status
Candidate  
Description
The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font, a different vulnerability than CVE-2016-2800.  
Phase
Assigned (20160301)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
775809 89611 CVE-2016-2792 CONFIRM:http://www.mozilla.org/security/announce/2016/mfsa2016-37.html  View
775810 89611 CVE-2016-2792 CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=1243482  View
775811 89611 CVE-2016-2792 CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html  View
775812 89611 CVE-2016-2792 DEBIAN:DSA-3510  View
775813 89611 CVE-2016-2792 URL:http://www.debian.org/security/2016/dsa-3510  View
775814 89611 CVE-2016-2792 DEBIAN:DSA-3515  View
775815 89611 CVE-2016-2792 URL:http://www.debian.org/security/2016/dsa-3515  View
775816 89611 CVE-2016-2792 DEBIAN:DSA-3520  View
775817 89611 CVE-2016-2792 URL:http://www.debian.org/security/2016/dsa-3520  View
775818 89611 CVE-2016-2792 GENTOO:GLSA-201605-06  View
775819 89611 CVE-2016-2792 URL:https://security.gentoo.org/glsa/201605-06  View
775820 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:0894  View
775821 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00091.html  View
775822 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:1767  View
775823 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00006.html  View
775824 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:1769  View
775825 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00007.html  View
775826 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:1778  View
775827 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00008.html  View
775828 89611 CVE-2016-2792 SUSE:SUSE-SU-2016:0909  View
775829 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00093.html  View
775830 89611 CVE-2016-2792 SUSE:SUSE-SU-2016:0727  View
775831 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00027.html  View
775832 89611 CVE-2016-2792 SUSE:SUSE-SU-2016:0777  View
775833 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00050.html  View
775834 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:0731  View
775835 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00029.html  View
775836 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:0733  View
775837 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00031.html  View
775838 89611 CVE-2016-2792 SUSE:SUSE-SU-2016:0820  View
775839 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00068.html  View
775840 89611 CVE-2016-2792 SUSE:openSUSE-SU-2016:0876  View
775841 89611 CVE-2016-2792 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00089.html  View
775842 89611 CVE-2016-2792 UBUNTU:USN-2917-2  View
775843 89611 CVE-2016-2792 URL:http://www.ubuntu.com/usn/USN-2917-2  View
775844 89611 CVE-2016-2792 UBUNTU:USN-2917-3  View
775845 89611 CVE-2016-2792 URL:http://www.ubuntu.com/usn/USN-2917-3  View
775846 89611 CVE-2016-2792 UBUNTU:USN-2934-1  View
775847 89611 CVE-2016-2792 URL:http://www.ubuntu.com/usn/USN-2934-1  View
775848 89611 CVE-2016-2792 UBUNTU:USN-2917-1  View
775849 89611 CVE-2016-2792 URL:http://www.ubuntu.com/usn/USN-2917-1  View
775850 89611 CVE-2016-2792 UBUNTU:USN-2927-1  View
775851 89611 CVE-2016-2792 URL:http://www.ubuntu.com/usn/USN-2927-1  View
775852 89611 CVE-2016-2792 BID:84222  View
775853 89611 CVE-2016-2792 URL:http://www.securityfocus.com/bid/84222  View
775854 89611 CVE-2016-2792 SECTRACK:1035215  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
1768 JVNDB-2016-002541 Mercurial の convert エクステンションにおける任意のコードを実行される脆弱性 Mercurial の convert エクステンションには、任意のコードを実行される脆弱性が存在します。 CVE-2016-3105 89611 6.8 8.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002541.html  View