CVE-2016-2839
CVSS v3.0
6.5 (Medium)
CVSS v2.0
4.3 (Medium)
EPSS
2.28 % (90th)
Affected Products
4
Advisories
8
Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allows remote attackers to cause a denial of service (application crash) via a crafted video.
Weaknesses
- CWE-20
- Improper Input Validation
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2016-08-05 01:59:06
(8 years ago) - Updated Date
-
2017-08-16 01:29:06
(7 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...