Lucene search
Mozilla FoundationMFSA2014-41HistoryApr 29, 2014 - 12:00 a.m.
Out-of-bounds write in Cairo — Mozilla
2014-04-2900:00:00
Mozilla Foundation
www.mozilla.org
23
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.021
Percentile
89.1%
Security researcher Jukka Jylänki reported a crash in the the Cairo graphics library. This happens when Cairo paints out-of-bounds to the destination buffer in the compositing function when working with canvas in certain circumstances. This issue allows malicious web content to cause a potentially exploitable crash.
Affected configurations
Node
mozillafirefoxRange<29
ORmozillaseamonkeyRange<2.26
Related
cve
cve
CVE-2014-1528
2014-04-30 10:49:04
prion
prion
Out-of-bounds
2014-04-30 10:49:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2014-41) - Linux
2021-11-11 00:00:00
Ubuntu Update for firefox USN-2185-1
2014-05-05 00:00:00
Ubuntu: Security Advisory (USN-2185-1)
2014-05-05 00:00:00
cvelist
cvelist
CVE-2014-1528
2014-04-30 10:00:00
nvd
nvd
CVE-2014-1528
2014-04-30 10:49:04
ubuntucve
ubuntucve
CVE-2014-1528
2014-04-29 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2185-1)
2014-04-30 00:00:00
openSUSE Security Update : seamonkey (openSUSE-SU-2014:0629-1)
2014-06-13 00:00:00
SeaMonkey < 2.26 Multiple Vulnerabilities
2014-04-29 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2014-04-29 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-05-01 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-04-29 00:00:00
suse
suse
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.021
Percentile
89.1%
Related for MFSA2014-41