Search CVE reports
1 – 6 of 6 results
CVE-2016-1951
Medium priorityMultiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to...
3 affected packages
firefox, nspr, thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | Not affected |
nspr | — | — | — | — | Fixed |
thunderbird | — | — | — | — | Fixed |
CVE-2015-7183
Medium prioritySome fixes available 21 of 22
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x...
4 affected packages
firefox, nspr, thunderbird, virtualbox
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | Fixed |
nspr | — | — | — | — | Not affected |
thunderbird | — | — | — | — | Fixed |
virtualbox | — | — | — | — | Not affected |
CVE-2014-1545
Medium prioritySome fixes available 3 of 4
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
1 affected package
nspr
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
nspr | — | — | — | — | — |
CVE-2013-5607
Medium prioritySome fixes available 12 of 15
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1,...
3 affected packages
firefox, nspr, thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
nspr | — | — | — | — | — |
thunderbird | — | — | — | — | — |
CVE-2010-3173
Low priorityThe SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral...
2 affected packages
nspr, nss
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
nspr | — | — | — | — | — |
nss | — | — | — | — | — |
CVE-2010-3170
Low priorityMozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 recognize a wildcard IP address in the subject’s Common Name field of an X.509 certificate, which...
2 affected packages
nspr, nss
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
nspr | — | — | — | — | — |
nss | — | — | — | — | — |