Bug 1265201 (CVE-2015-7178, CVE-2015-7179) - CVE-2015-7178 CVE-2015-7179 Mozilla: Memory safety errors in libGLES in the ANGLE graphics library (MFSA 2015-113)
Summary: CVE-2015-7178 CVE-2015-7179 Mozilla: Memory safety errors in libGLES in the A...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2015-7178, CVE-2015-7179
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
urgent
urgent
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: 1261782
TreeView+ depends on / blocked
 
Reported: 2015-09-22 11:16 UTC by Prasad Pandit
Modified: 2023-05-12 14:19 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2015-09-22 11:56:59 UTC
Embargoed:

Attachments (Terms of Use)

Description Prasad Pandit 2015-09-22 11:16:53 UTC 
Security researcher Ronald Crane reported two issues in the libGLES portions of the ANGLE graphics library, used for WebGL and OpenGL content on Windows systems. The first of these is a missing bounds check leading to memory safety errors when manipulating shaders which could result in the writing to unowned memory. The second issue also affects shaders when insufficient memory is allocated for a shader attribute array, leading to a buffer overflow. Both of these issues can lead to a potentially exploitable crash.

Note: These issues are specific to Windows and does not affect Linux or OS X
systems.

External References:

https://www.mozilla.org/en-US/security/advisories/mfsa2015-113/
Comment 1 Martin Prpič 2015-09-24 12:40:28 UTC 
Acknowledgements:

Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Ronald Crane as the original reporter.
Note You need to log in before you can comment on or make changes to this bug.