An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2017-11/#CVE-2017-5447 Acknowledgements: Name: the Mozilla project Upstream: Ivan Fratric (Google Project Zero)
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2017:1104 https://access.redhat.com/errata/RHSA-2017:1104
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:1106 https://access.redhat.com/errata/RHSA-2017:1106
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 7 Via RHSA-2017:1201 https://access.redhat.com/errata/RHSA-2017:1201