Unrated severityNVD Advisory· Published Dec 6, 2015· Updated Jun 17, 2026
CVE-2015-6781
CVE-2015-6781
Description
Integer overflow in the FontData::Bound function in data/font_data.cc in Google sfntly, as used in Google Chrome before 47.0.2526.73, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted offset or length value within font data in an SFNT container.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
10- googlechromereleases.blogspot.com/2015/12/stable-channel-update.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.htmlnvd
- www.debian.org/security/2015/dsa-3415nvd
- www.securityfocus.com/bid/78416nvd
- www.securitytracker.com/id/1034298nvd
- code.google.com/p/chromium/issues/detailnvd
- codereview.chromium.org/1367323002/nvd
- github.com/googlei18n/sfntly/commit/de776d4ef06ca29c240de3444348894f032b03ffnvd
- security.gentoo.org/glsa/201603-09nvd
News mentions
0No linked articles in our index yet.