Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 574596

Summary: <www-client/firefox-38.6.1: arbitrary code execution in bundled graphite library (CVE-2016-1523)
Product: Gentoo Security Reporter: Andrey Ovcharov <sudormrfhalt>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: major CC: mozilla
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
See Also:
Whiteboard: A2 [glsa]
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 574972    

Description Andrey Ovcharov 2016-02-13 02:28:26 UTC
New version firefox ESR is out at February 11, 2016 fix CVE-2016-1523 Please bump it!
Comment 1 Mike Limansky 2016-02-13 07:57:17 UTC
The issue description
Comment 2 Sergey Popov gentoo-dev 2016-02-13 13:28:55 UTC
This is a security issue, reassigning
Comment 3 Jory A. Pratt gentoo-dev 2016-02-14 19:36:41 UTC
(In reply to Sergey Popov from comment #2)
> This is a security issue, reassigning

Firefox-38.6.1 is in tree, feel free to stabilize it.
Comment 4 Aaron Bauman (RETIRED) gentoo-dev 2016-02-15 03:49:34 UTC
Arches please stabilize.
Comment 5 Agostino Sarubbo gentoo-dev 2016-02-15 10:22:30 UTC
amd64 stable
Comment 6 Agostino Sarubbo gentoo-dev 2016-02-15 10:23:12 UTC
x86 stable
Comment 7 Jeroen Roovers (RETIRED) gentoo-dev 2016-02-17 06:18:56 UTC
Stable for HPPA.
Comment 8 Jeroen Roovers (RETIRED) gentoo-dev 2016-02-17 14:46:19 UTC
Stable for PPC64.
Comment 9 Markus Meier gentoo-dev 2016-02-19 16:56:02 UTC
no stable keywords for arm
Comment 10 Ian Stakenvicius (RETIRED) gentoo-dev 2016-02-19 18:09:46 UTC
mail-client/thunderbird{,-bin}-38.6.0 also contains the fixes for this too; stabilization has been requested in bug 573074 already though.
Comment 11 GLSAMaker/CVETool Bot gentoo-dev 2016-03-14 08:18:31 UTC
CVE-2016-1523 (
  The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Graphite
  2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before
  38.6.1, mishandles a return value, which allows remote attackers to cause a
  denial of service (missing initialization, NULL pointer dereference, and
  application crash) via a crafted Graphite smart font.
Comment 12 Aaron Bauman (RETIRED) gentoo-dev 2016-03-14 08:22:21 UTC
Added to existing GLSA.  This will be mitigated when stabilization occurs in bug 576862.
Comment 13 Tobias Klausmann (RETIRED) gentoo-dev 2016-03-16 09:22:32 UTC
Stable on alpha.
Comment 14 Agostino Sarubbo gentoo-dev 2016-03-16 12:06:53 UTC
ppc stable
Comment 15 GLSAMaker/CVETool Bot gentoo-dev 2016-05-31 05:55:46 UTC
This issue was resolved and addressed in
 GLSA 201605-06 at
by GLSA coordinator Yury German (BlueKnight).