CVE-2015-2710

NameCVE-2015-2710
DescriptionHeap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets (CSS) token sequence.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-3260-1, DSA-3264-1
NVD severitymedium

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
icedovesourcesqueeze(unfixed)end-of-life
icedovesourcewheezy31.7.0-1~deb7u1DSA-3264-1
icedovesourcejessie31.7.0-1~deb8u1DSA-3264-1
icedovesource(unstable)31.7.0-1
iceweaselsourcesqueeze(unfixed)end-of-life
iceweaselsourcewheezy31.7.0esr-1~deb7u1DSA-3260-1
iceweaselsourcejessie31.7.0esr-1~deb8u1DSA-3260-1
iceweaselsource(unstable)38.0-1

Notes

https://www.mozilla.org/en-US/security/advisories/mfsa2015-48/

Search for package or bug name: Reporting problems