Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 27 results


CVE-2018-7999

Low priority

Some fixes available 1 of 3

In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other...

1 affected packages

graphite2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
graphite2 Not affected Not affected Not affected Not affected Fixed
Show less packages

CVE-2017-7778

Medium priority

Some fixes available 11 of 12

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This...

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7777

Medium priority

Some fixes available 11 of 12

Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::read_glyph function.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7776

Medium priority

Some fixes available 11 of 12

Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7774

Medium priority

Some fixes available 11 of 12

Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Silf::readGraphite function.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7773

Medium priority

Some fixes available 11 of 12

Heap-based Buffer Overflow write in Graphite2 library in Firefox before 54 in lz4::decompress src/Decompressor.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7772

Medium priority

Some fixes available 11 of 12

Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2017-7771

Medium priority

Some fixes available 11 of 12

Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Pass::readPass function.

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2016-2802

Medium priority

Some fixes available 14 of 15

The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service...

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Not affected
graphite2 Fixed
thunderbird Fixed
Show less packages

CVE-2016-2801

Medium priority

Some fixes available 14 of 15

The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer...

3 affected packages

firefox, graphite2, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Not affected
graphite2 Fixed
thunderbird Fixed
Show less packages