ByteOS Network

CVE Vulnerability Details :

CVE-2015-0827

PUBLISHED

More Info Official Page

Assigner-mozilla

Assigner Org ID-f16b083a-5664-49f3-a51e-8d479e5ed7fe

Published At-25 Feb, 2015 | 11:00

Updated At-06 Aug, 2024 | 04:26

▼CVE Numbering Authority (CNA)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00006.html	vendor-advisory x_refsource_SUSE
http://www.securityfocus.com/bid/72755	vdb-entry x_refsource_BID
https://bugzilla.mozilla.org/show_bug.cgi?id=1117304	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00007.html	vendor-advisory x_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2015-0642.html	vendor-advisory x_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00008.html	vendor-advisory x_refsource_SUSE
http://www.ubuntu.com/usn/USN-2506-1	vendor-advisory x_refsource_UBUNTU
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html	vendor-advisory x_refsource_SUSE
https://security.gentoo.org/glsa/201504-01	vendor-advisory x_refsource_GENTOO
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.html	vendor-advisory x_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2015-0265.html	vendor-advisory x_refsource_REDHAT
http://www.securitytracker.com/id/1031792	vdb-entry x_refsource_SECTRACK
http://www.debian.org/security/2015/dsa-3174	vendor-advisory x_refsource_DEBIAN
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	x_refsource_CONFIRM
http://www.mozilla.org/security/announce/2015/mfsa2015-19.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html	vendor-advisory x_refsource_SUSE
http://www.debian.org/security/2015/dsa-3179	vendor-advisory x_refsource_DEBIAN
http://rhn.redhat.com/errata/RHSA-2015-0266.html	vendor-advisory x_refsource_REDHAT
http://www.securitytracker.com/id/1031791	vdb-entry x_refsource_SECTRACK
http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.html	vendor-advisory x_refsource_SUSE
http://www.ubuntu.com/usn/USN-2505-1	vendor-advisory x_refsource_UBUNTU
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00001.html	vendor-advisory x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00006.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.securityfocus.com/bid/72755

Resource:

vdb-entry

x_refsource_BID

Hyperlink: https://bugzilla.mozilla.org/show_bug.cgi?id=1117304

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00007.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0642.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00008.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.ubuntu.com/usn/USN-2506-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://security.gentoo.org/glsa/201504-01

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0265.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.securitytracker.com/id/1031792

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.debian.org/security/2015/dsa-3174

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.mozilla.org/security/announce/2015/mfsa2015-19.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.debian.org/security/2015/dsa-3179

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0266.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.securitytracker.com/id/1031791

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.ubuntu.com/usn/USN-2505-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00001.html

Resource:

vendor-advisory

x_refsource_SUSE

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00006.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.securityfocus.com/bid/72755	vdb-entry x_refsource_BID x_transferred
https://bugzilla.mozilla.org/show_bug.cgi?id=1117304	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00007.html	vendor-advisory x_refsource_SUSE x_transferred
http://rhn.redhat.com/errata/RHSA-2015-0642.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00008.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.ubuntu.com/usn/USN-2506-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html	vendor-advisory x_refsource_SUSE x_transferred
https://security.gentoo.org/glsa/201504-01	vendor-advisory x_refsource_GENTOO x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.html	vendor-advisory x_refsource_SUSE x_transferred
http://rhn.redhat.com/errata/RHSA-2015-0265.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.securitytracker.com/id/1031792	vdb-entry x_refsource_SECTRACK x_transferred
http://www.debian.org/security/2015/dsa-3174	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	x_refsource_CONFIRM x_transferred
http://www.mozilla.org/security/announce/2015/mfsa2015-19.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.debian.org/security/2015/dsa-3179	vendor-advisory x_refsource_DEBIAN x_transferred
http://rhn.redhat.com/errata/RHSA-2015-0266.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.securitytracker.com/id/1031791	vdb-entry x_refsource_SECTRACK x_transferred
http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.ubuntu.com/usn/USN-2505-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00001.html	vendor-advisory x_refsource_SUSE x_transferred