CVE-2015-7178

Publication date 24 September 2015

Last updated 24 July 2024


Ubuntu priority

The ProgramBinary::linkAttributes function in libGLES in ANGLE, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows, mishandles shader access, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted (1) OpenGL or (2) WebGL content.

Status

Package Ubuntu Release Status
firefox 15.04 vivid
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected
thunderbird 15.04 vivid
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected