Security Advisory

CVE-2016-5271

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-09-22 22:00:00

Last updated 2024-08-06 00:53:48

Assigner mozilla

State PUBLISHED

Description

The PropertyProvider::GetSpacingInternal function in Mozilla Firefox before 49.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via text runs in conjunction with a "display: contents" Cascading Style Sheets (CSS) property.

← Browse all CVEs View on cve.org ↗