Heap-based buffer overflow in the resize_context_buffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data.
History

Tue, 22 Oct 2024 14:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mozilla:firefox_esr:38.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:38.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:38.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:38.1.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*
Vendors & Products Mozilla firefox Esr

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2015-08-16T01:00:00

Updated: 2024-08-06T06:18:11.557Z

Reserved: 2015-06-10T00:00:00

Link: CVE-2015-4485

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-08-16T01:59:13.190

Modified: 2024-10-22T13:42:14.500

Link: CVE-2015-4485

cve-icon Redhat

Severity : Critical

Publid Date: 2015-08-11T00:00:00Z

Links: CVE-2015-4485 - Bugzilla