{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1957?format=json","vulnerability_id":"VCID-h3an-hzsd-3kfh","summary":"Security researcher Ucha Gobejishvili reported a denial of service\n(DOS) attack when doing certain WebGL operations in a canvas requiring an unusually large\namount buffer to be allocated from video memory. This resulted in memory resource\nexhaustion with some Intel video cards, requiring the computer to be rebooted to return\nfunctionality. This was resolved by putting in additional checks on the amount of memory\nto be allocated during graphics processing.This issue was limited to a subset of Intel drivers on Linux. Other\noperating systems were not affected.In general this flaw cannot be exploited through email in the\nThunderbird product because scripting is disabled, but is potentially a risk in\nbrowser or browser-like contexts.","aliases":[{"alias":"CVE-2016-1956"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/890?format=json","purl":"pkg:mozilla/Firefox@45.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@45.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/895?format=json","purl":"pkg:mozilla/Thunderbird@45.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@45.0.0"}],"affected_packages":[],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1956","reference_id":"CVE-2016-1956","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1956"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-19","reference_id":"mfsa2016-19","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-19"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h3an-hzsd-3kfh"}