CVE-2016-1951 - log back

CVE-2016-1951 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
References
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1174015
+ https://bugzilla.redhat.com/show_bug.cgi?id=1311126
Notes