4.3

CVE-2012-1143

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted font.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FreetypeFreetype Version <= 2.4.8
FreetypeFreetype Version1.3.1
FreetypeFreetype Version2.0.0
FreetypeFreetype Version2.0.1
FreetypeFreetype Version2.0.2
FreetypeFreetype Version2.0.3
FreetypeFreetype Version2.0.4
FreetypeFreetype Version2.0.5
FreetypeFreetype Version2.0.6
FreetypeFreetype Version2.0.7
FreetypeFreetype Version2.0.8
FreetypeFreetype Version2.0.9
FreetypeFreetype Version2.1
FreetypeFreetype Version2.1.3
FreetypeFreetype Version2.1.4
FreetypeFreetype Version2.1.5
FreetypeFreetype Version2.1.6
FreetypeFreetype Version2.1.7
FreetypeFreetype Version2.1.8
FreetypeFreetype Version2.1.8 Updaterc1
FreetypeFreetype Version2.1.9
FreetypeFreetype Version2.1.10
FreetypeFreetype Version2.2.0
FreetypeFreetype Version2.2.1
FreetypeFreetype Version2.3.0
FreetypeFreetype Version2.3.1
FreetypeFreetype Version2.3.2
FreetypeFreetype Version2.3.3
FreetypeFreetype Version2.3.4
FreetypeFreetype Version2.3.5
FreetypeFreetype Version2.3.6
FreetypeFreetype Version2.3.7
FreetypeFreetype Version2.3.8
FreetypeFreetype Version2.3.9
FreetypeFreetype Version2.3.10
FreetypeFreetype Version2.3.11
FreetypeFreetype Version2.3.12
FreetypeFreetype Version2.4.0
FreetypeFreetype Version2.4.1
FreetypeFreetype Version2.4.2
FreetypeFreetype Version2.4.3
FreetypeFreetype Version2.4.4
FreetypeFreetype Version2.4.5
FreetypeFreetype Version2.4.6
FreetypeFreetype Version2.4.7
MozillaFirefox Mobile Version <= 10.0.3
MozillaFirefox Mobile Version1.0
MozillaFirefox Mobile Version4.0
MozillaFirefox Mobile Version4.0 Updatebeta1
MozillaFirefox Mobile Version4.0 Updatebeta2
MozillaFirefox Mobile Version4.0 Updatebeta3
MozillaFirefox Mobile Version4.0 Updatebeta4
MozillaFirefox Mobile Version5.0
MozillaFirefox Mobile Version6.0
MozillaFirefox Mobile Version6.0.1
MozillaFirefox Mobile Version6.0.2
MozillaFirefox Mobile Version7.0
MozillaFirefox Mobile Version8.0
MozillaFirefox Mobile Version9.0
MozillaFirefox Mobile Version10.0
MozillaFirefox Mobile Version10.0.1
MozillaFirefox Mobile Version10.0.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.57% 0.722
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/48951
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://support.apple.com/kb/HT5503
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00015.html
http://rhn.redhat.com/errata/RHSA-2012-0467.html
http://secunia.com/advisories/48508
http://secunia.com/advisories/48758
http://secunia.com/advisories/48797
http://secunia.com/advisories/48822
http://secunia.com/advisories/48918
http://secunia.com/advisories/48973
http://security.gentoo.org/glsa/glsa-201204-04.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2012:057
http://www.mozilla.org/security/announce/2012/mfsa2012-21.html
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/03/06/16
http://www.securityfocus.com/bid/52318
http://www.securitytracker.com/id?1026765
http://www.ubuntu.com/usn/USN-1403-1
https://bugzilla.mozilla.org/show_bug.cgi?id=733512
https://bugzilla.redhat.com/show_bug.cgi?id=800606