Wind River Support Network

HomeDefectsLIN6-10723
Fixed

LIN6-10723 : Security Advisory - nspr - CVE-2015-7183

Created: Jan 13, 2016    Updated: Dec 3, 2018
Resolved Date: Feb 1, 2016
Found In Version: 6.0
Fix Version: 6.0.0.28
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7183

Other Downloads


Live chat
Online