Search CVE reports


Toggle filters

1 – 6 of 6 results


CVE-2016-1951

Medium priority
Fixed

Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to...

3 affected packages

firefox, nspr, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Not affected
nspr Fixed
thunderbird Fixed
Show less packages

CVE-2015-7183

Medium priority

Some fixes available 21 of 22

Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x...

4 affected packages

firefox, nspr, thunderbird, virtualbox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox Fixed
nspr Not affected
thunderbird Fixed
virtualbox Not affected
Show less packages

CVE-2014-1545

Medium priority

Some fixes available 3 of 4

Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.

1 affected package

nspr

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
nspr
Show less packages

CVE-2013-5607

Medium priority

Some fixes available 12 of 15

Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1,...

3 affected packages

firefox, nspr, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
nspr
thunderbird
Show less packages

CVE-2010-3173

Low priority
Fixed

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral...

2 affected packages

nspr, nss

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
nspr
nss
Show less packages

CVE-2010-3170

Low priority
Fixed

Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 recognize a wildcard IP address in the subject’s Common Name field of an X.509 certificate, which...

2 affected packages

nspr, nss

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
nspr
nss
Show less packages