CVE-2015-2710
N/A
N/A
Summary
Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets (CSS) token sequence.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.ubuntu.com/usn/USN-2602-1
- http://rhn.redhat.com/errata/RHSA-2015-0988.html
- https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7
- http://www.securityfocus.com/bid/74611
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html
- https://bugzilla.mozilla.org/show_bug.cgi?id=1149542
- http://www.debian.org/security/2015/dsa-3264
- http://www.debian.org/security/2015/dsa-3260
- http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00000.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html
- http://www.ubuntu.com/usn/USN-2603-1
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00054.html
- http://rhn.redhat.com/errata/RHSA-2015-1012.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
- http://www.mozilla.org/security/announce/2015/mfsa2015-48.html
- https://security.gentoo.org/glsa/201605-06
References
- http://www.ubuntu.com/usn/USN-2602-1
- http://rhn.redhat.com/errata/RHSA-2015-0988.html
- https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7
- http://www.securityfocus.com/bid/74611
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html
- https://bugzilla.mozilla.org/show_bug.cgi?id=1149542
- http://www.debian.org/security/2015/dsa-3264
- http://www.debian.org/security/2015/dsa-3260
- http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00000.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html
- http://www.ubuntu.com/usn/USN-2603-1
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00054.html
- http://rhn.redhat.com/errata/RHSA-2015-1012.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
- http://www.mozilla.org/security/announce/2015/mfsa2015-48.html
- https://security.gentoo.org/glsa/201605-06
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.