Launchpad CVE tracker

CVE 2015-2716

Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code by providing a large amount of compressed XML data, a related issue to CVE-2015-1283.

Related bugs and status

CVE-2015-2716 (Candidate) is related to these bugs:

Bug #1881425: CVE-2015-2716: expat: Buffer overflow in the XML parser

Summary				In	Importance	Status
	1881425	CVE-2015-2716: expat: Buffer overflow in the XML parser		StarlingX	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
CONFIRM: https://bugzilla.mozil...
SUSE: SUSE-SU-2015:0960
SUSE: openSUSE-SU-2015:0934
CONFIRM: https://hg.mozilla.org...
CONFIRM: http://www.oracle.com/...
GENTOO: GLSA-201605-06
SUSE: openSUSE-SU-2015:1266
SUSE: SUSE-SU-2015:0978
CONFIRM: https://www.mozilla.or...
DEBIAN: DSA-3260
DEBIAN: DSA-3264
REDHAT: RHSA-2015:0988
REDHAT: RHSA-2015:1012
SUSE: openSUSE-SU-2015:0892
UBUNTU: USN-2602-1
UBUNTU: USN-2603-1
BID: 74611
CONFIRM: https://www.tenable.co...
CONFIRM: https://kc.mcafee.com/...

Launchpad.net

CVE 2015-2716

Related bugs and status

Related bugs

References