1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2016-4154a4d0ba

[FEDORA-2016-4154a4d0ba] Fedora 23: graphite2

Severity High
Affected Packages 1
CVEs 4
Info Packages References Vulnerabilities

Security fix for CVE-2016-1521, CVE-2016-1522, CVE-2016-1523 and CVE-2016-1526

Package Affected Version
pkg:rpm/fedora/graphite2?distro=fedora-23 < 1.3.5.1.fc23
ID
FEDORA-2016-4154a4d0ba
Severity
high
Severity from
CVE-2016-1521
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4154a4d0ba
Published
2016-02-21T16:32:47
(8 years ago)
Modified
2016-02-21T16:32:47
(8 years ago)
Rights
Copyright 2016 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1308591 Bug #1308591 - CVE-2016-1526 graphite2: Out-of-bounds read vulnerability in TfUtil:LocaLookup [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1308591
Bugzilla 1305814 Bug #1305814 - CVE-2016-1523 graphite2: Heap-based buffer overflow in context item handling functionality [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1305814
Bugzilla 1305806 Bug #1305806 - CVE-2016-1521 graphite2: Two out-of-bound read vulnerabilities triggered by crafted fonts [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1305806
Bugzilla 1305811 Bug #1305811 - CVE-2016-1522 graphite2: Null pointer dereference and out-of-bounds access vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1305811
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/graphite2?distro=fedora-23 fedora graphite2 < 1.3.5.1.fc23 fedora-23
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date