CVE-2015-0823 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2015-0823?

CVE-2015-0823 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-0823?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Opentype Sanitiser Project Opentype Sanitiser, Mozilla Firefox, Opensuse Opensuse.

Vulnerability Description

Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox before 36.0, might allow remote attackers to trigger problematic Developer Console information or possibly have unspecified other impact by leveraging incorrect macro expansion, related to the ots::ots_gasp_parse function.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	12.04
Opentype Sanitiser Project	Opentype Sanitiser	All versions
Mozilla	Firefox	<= 35.0.1
Opensuse	Opensuse	13.1

References

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.htmlThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.htmlThird Party Advisory
http://www.mozilla.org/security/announce/2015/mfsa2015-23.htmlVendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.securityfocus.com/bid/72754Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1031791Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-2505-1Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1098497Issue Tracking
https://github.com/khaledhosny/ots/commit/003c62d28ae438aa8943cb31535563397f838aIssue TrackingPatch
https://security.gentoo.org/glsa/201504-01
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00000.htmlThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-03/msg00067.htmlThird Party Advisory
http://www.mozilla.org/security/announce/2015/mfsa2015-23.htmlVendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.securityfocus.com/bid/72754Third Party AdvisoryVDB Entry

FAQ

What is CVE-2015-0823?

CVE-2015-0823 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox before 36.0, might allow remote attackers to trigger problematic Developer Console information or possibly hav...

How severe is CVE-2015-0823?

CVE-2015-0823 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-0823?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Opentype Sanitiser Project Opentype Sanitiser, Mozilla Firefox, Opensuse Opensuse.