Lucene search
Mozilla FoundationMFSA2015-22HistoryFeb 24, 2015 - 12:00 a.m.
Crash using DrawTarget in Cairo graphics library — Mozilla
2015-02-2400:00:00
Mozilla Foundation
www.mozilla.org
33
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.019
Percentile
88.6%
Security researcher Atte Kettunen used the Address Sanitizer tool to discover a crash while drawing images through the Cairo graphics library while using the DrawTarget function. This can result in a segmentation fault due to zero-ing out of memory outside the bounds of the image.
Affected configurations
Node
mozillafirefoxRange<36
ORmozillaseamonkeyRange<2.33
Related
cvelist
cvelist
CVE-2015-0824
2015-02-25 11:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-22) - Linux
2021-11-11 00:00:00
Ubuntu: Security Advisory (USN-2505-2)
2015-03-10 00:00:00
Ubuntu: Security Advisory (USN-2505-1)
2015-02-26 00:00:00
nvd
nvd
CVE-2015-0824
2015-02-25 11:59:05
prion
prion
Out-of-bounds
2015-02-25 11:59:00
ubuntucve
ubuntucve
CVE-2015-0824
2015-02-25 00:00:00
cve
cve
CVE-2015-0824
2015-02-25 11:59:05
archlinux
archlinux
firefox: multiple issues
2015-02-25 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Firefox regression (USN-2505-2)
2015-03-10 00:00:00
Mozilla Firefox ESR < 31.5 Multiple Vulnerabilities
2019-11-06 00:00:00
Mozilla Firefox < 36.0 Multiple Vulnerabilities
2015-03-17 00:00:00
ubuntu
ubuntu
Firefox regression
2015-03-09 00:00:00
Firefox vulnerabilities
2015-02-25 00:00:00
mageia
mageia
Updated iceape packages fix security vulnerabilities
2015-04-03 16:11:23
suse
suse
Security update for MozillaFirefox, mozilla-nss (important)
2015-03-01 11:04:54
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-02-24 00:00:00
kaspersky
kaspersky
KLA10464 Multiple vulnerabilities in Mozilla products
2015-02-24 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2015-03-22 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.019
Percentile
88.6%
Related for MFSA2015-22