CVE-2016-1951

Source
Severity Medium
Remote Yes
Type Arbitrary code execution
Description
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
Group Package Affected Fixed Severity Status Ticket
AVG-933 nspr 4.11-1 4.12-1 Medium Fixed
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1174015
https://bugzilla.redhat.com/show_bug.cgi?id=1311126