CVE-2017-7824

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2017-7824

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7824.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-7824

Downstream

DEBIAN-CVE-2017-7824

DLA-1118-1

DLA-1153-1

DSA-3987-1

DSA-4014-1

RHSA-2017:2831

RHSA-2017:2885

SUSE-SU-2017:2688-1

SUSE-SU-2017:2872-1

SUSE-SU-2017:2872-2

UBUNTU-CVE-2017-7824

USN-3435-1

USN-3436-1

openSUSE-SU-2017:2707-1

openSUSE-SU-2017:2710-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Published

2018-06-11T21:29:11Z

Modified

2025-08-09T19:01:27Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

References

Affected packages