Launchpad CVE tracker

CVE 2015-6781

Integer overflow in the FontData::Bound function in data/font_data.cc in Google sfntly, as used in Google Chrome before 47.0.2526.73, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted offset or length value within font data in an SFNT container.

Related bugs and status

CVE-2015-6781 (Candidate) is related to these bugs:

Bug #1522411: Chromium in Ubuntu still to version 45.0.2454.101 not update to version 46.0.2490.71 as Debian Chromium present version.

Summary				In	Importance	Status
	1522411	Chromium in Ubuntu still to version 45.0.2454.101 not update to version 46.0.2490.71 as Debian Chromium present version.		chromium-browser (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://googlechromerel...
CONFIRM: https://code.google.co...
CONFIRM: https://codereview.chr...
CONFIRM: https://github.com/goo...
BID: 78416
GENTOO: GLSA-201603-09
DEBIAN: DSA-3415
SUSE: openSUSE-SU-2015:2290
SUSE: openSUSE-SU-2015:2291
SECTRACK: 1034298

Launchpad.net

CVE 2015-6781

Related bugs and status

Related bugs

References