By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
TechnoclinicTechnoclinic
  • Home
  • APPS
  • CAMERAS
    • PRINTERS
  • GAMING
    • LAPTOPS
  • HDTV
  • NEWS
  • PHONES
    • TABLETS
  • REVIEWS
  • SOFTWARE
  • Contact Us!
Search
  • Home
  • Contact Us!
  • Privacy Policy
© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.
Reading: Vulnerabilities in Font Processing Library Impact Firefox, Linux: Report
Share
Sign In
Aa
TechnoclinicTechnoclinic
Aa
Search
  • Home
  • APPS
  • CAMERAS
    • PRINTERS
  • GAMING
    • LAPTOPS
  • HDTV
  • NEWS
  • PHONES
    • TABLETS
  • REVIEWS
  • SOFTWARE
  • Contact Us!
Have an existing account? Sign In
Follow US
  • Home
  • Contact Us!
  • Privacy Policy
© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.
Technoclinic > APPS > Vulnerabilities in Font Processing Library Impact Firefox, Linux: Report
APPS

Vulnerabilities in Font Processing Library Impact Firefox, Linux: Report

srijita
Last updated: 2016/02/10 at 10:01 AM
srijita
Share
SHARE
Vulnerabilities in Font Processing Library Impact Firefox, Linux: Report

Security researchers have found vulnerabilities in Graphite, also known as Libgraphite font processing library, that affects a number of systems. The vulnerabilities, if exploited, allow an attacker to seed malicious fonts to a machine. The Libgraphite library is utilised by Linux, Thunderbird, WordPad,Firefox, OpenOffice, as well as several other major platforms and applications.

Security researchers from Cisco have posted an advisory to outline four vulnerabilities in the Libgraphite font processing library. One of the vulnerabilities allows the attackers to execute arbitrary code on the machine, and among other things, crash the system.

Two of the vulnerabilities can result in denial of service situations. “An attacker simply needs the user to run a Graphite-enabled application that renders a page using a specially crafted font that triggers one of these vulnerabilities,” the team wrote in a blog post.

The vulnerabilities impact Firefox 11 and later versions and many other aforementioned apps and services that support Graphite. “Since Mozilla Firefox 11 and later versions directly support Graphite, the attacker could easily compromise a server and then serve the specially crafted font when the user renders a page from the server (since Graphite supports both local and server-based fonts).” To recall, Firefox included Graphite by default in 2012.

Besides the large range of devices that are impacted, the vulnerabilities are also concerning because it is quite easy for attackers to get hold of a machine. A user can unknowingly visit a malicious website and get affected. Mozilla, and various Linux distributions are yet to address the issue.

[“source-gadgets.ndtv”]

TAGGED: Firefox, Font, Impact, in, Library, Linux, Processing, Vulnerabilities

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
[mc4wp_form]
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
srijita February 9, 2016
Share this Article
Facebook Twitter Copy Link Print
Share
Previous Article Apple’s CloudKit Gets Server-Side API; Positioned as Parse Alternative
Next Article Facebook Messenger Has a Hidden Chess Game; Here’s How to Get Started

Latest News

What’s in the Xbox Series?
NEWS
The Purpose of End Seals
NEWS
Everything You Need to Know About Printing Repair
NEWS
Ways You Can Do to Avoid Data Breaches
NEWS
5 Ways to Enhance the Ambiance of Bar
NEWS
How Survey Software Measures Customer Satisfaction
NEWS

Most Viewed Posts

  • How to Start a Review Blog (and Make Extra Money) (47)
  • Ways You Can Do to Avoid Data Breaches (40)
  • Best of 2019: Redmi Note 8 Pro is the best mainstream phone (39)
  • What Does A Robotics Engineer Do (37)
  • Cassian Harrison, Media Star and Founder, Shares How to Build a Successful App from Scratch (37)

© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.

Join Us!

Subscribe to our newsletter and never miss our latest news, podcasts etc..

[mc4wp_form]
Zero spam, Unsubscribe at any time.

Removed from reading list

Undo
Welcome Back!

Sign in to your account

Lost your password?