Project

General

Profile

Bug #7427

Bug #7426: graphite2: Multiple vulnerabilities (CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778)

[3.6] graphite2: Multiple vulnerabilities (CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778)

Added by Alicha CH about 2 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
06/15/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes,
and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10.

Reference:

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778

Associated revisions

Revision 1356d751 (diff)
Added by Natanael Copa about 2 years ago

main/graphite2: security upgrade to 1.3.10

CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,
CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778

fixes #7427

History

#1 Updated by Natanael Copa about 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH almost 2 years ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF