High severity8.8NVD Advisory· Published Aug 5, 2016· Updated May 6, 2026

CVE-2016-2838

Description

Heap-based buffer overflow in the nsBidi::BracketData::AddOpening function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via directional content in an SVG document.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.mozilla.org/security/announce/2016/mfsa2016-64.htmlnvdVendor Advisory
bugzilla.mozilla.org/show_bug.cginvdIssue TrackingPermissions Required
lists.opensuse.org/opensuse-security-announce/2016-08/msg00004.htmlnvd
lists.opensuse.org/opensuse-security-announce/2016-08/msg00029.htmlnvd
rhn.redhat.com/errata/RHSA-2016-1551.htmlnvd
www.debian.org/security/2016/dsa-3640nvd
www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlnvd
www.securityfocus.com/bid/92261nvd
www.securitytracker.com/id/1036508nvd
www.ubuntu.com/usn/USN-3044-1nvd
security.gentoo.org/glsa/201701-15nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000