CVE-2015-2734

Currently unrated

Key Information:

Vendor: Suse
Status: Linux Enterprise Server; Linux Enterprise Software Development Kit; Linux Enterprise Desktop; Suse Linux Enterprise Server
Vendor: CVE Published:; 6 July 2015

Summary

The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecified impact and attack vectors.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://rhn.redhat.com/errata/RHSA-2015-1455.html

vendor-advisoryx_refsource_REDHAT

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

Timeline

Vulnerability published
Jul 6, 2015
Vulnerability Reserved
Mar 25, 2015