[FEDORA-2016-4154a4d0ba] Fedora 23: graphite2
Severity
High
Affected Packages
1
CVEs
4
Security fix for CVE-2016-1521, CVE-2016-1522, CVE-2016-1523 and CVE-2016-1526
Package | Affected Version |
---|---|
pkg:rpm/fedora/graphite2?distro=fedora-23 | < 1.3.5.1.fc23 |
- ID
- FEDORA-2016-4154a4d0ba
- Severity
- high
- Severity from
- CVE-2016-1521
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2016-4154a4d0ba
- Published
-
2016-02-21T16:32:47
(8 years ago) - Modified
-
2016-02-21T16:32:47
(8 years ago) - Rights
- Copyright 2016 Red Hat, Inc.
- Other Advisories
-
- ALAS-2016-696
- DSA-3477-1
- DSA-3479-1
- DSA-3491-1
- ELSA-2016-0197
- ELSA-2016-0594
- FEDORA-2016-338a7e9925
- FREEBSD:8F10FA04-CF6A-11E5-96D6-14DAE9D210B8
- GLSA-201605-06
- GLSA-201701-35
- GLSA-201701-63
- RHSA-2016:0197
- RHSA-2016:0258
- RHSA-2016:0594
- RHSA-2016:0695
- SUSE-SU-2016:0554-1
- SUSE-SU-2016:0564-1
- SUSE-SU-2016:0584-1
- SUSE-SU-2016:0779-1
- USN-2902-1
- USN-2904-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1308591 | Bug #1308591 - CVE-2016-1526 graphite2: Out-of-bounds read vulnerability in TfUtil:LocaLookup [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1308591 |
Bugzilla | 1305814 | Bug #1305814 - CVE-2016-1523 graphite2: Heap-based buffer overflow in context item handling functionality [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1305814 |
Bugzilla | 1305806 | Bug #1305806 - CVE-2016-1521 graphite2: Two out-of-bound read vulnerabilities triggered by crafted fonts [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1305806 |
Bugzilla | 1305811 | Bug #1305811 - CVE-2016-1522 graphite2: Null pointer dereference and out-of-bounds access vulnerabilities [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1305811 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/graphite2?distro=fedora-23 | fedora | graphite2 | < 1.3.5.1.fc23 | fedora-23 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |