{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"critical"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2014-1551","title":"Title"},{"category":"description","text":"Use-after-free vulnerability in the FontTableRec destructor in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 on Windows allows remote attackers to execute arbitrary code via crafted use of fonts in MathML content, leading to improper handling of a DirectWrite font-face object.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2014-1551","url":"https://www.suse.com/security/cve/CVE-2014-1551"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 887746 for CVE-2014-1551","url":"https://bugzilla.suse.com/887746"}],"title":"SUSE CVE CVE-2014-1551","tracking":{"current_release_date":"2025-07-03T00:10:41Z","generator":{"date":"2023-02-15T05:30:52Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2014-1551","initial_release_date":"2023-02-15T05:30:52Z","revision_history":[{"date":"2023-02-15T05:30:52Z","number":"2","summary":"Current version"},{"date":"2025-06-27T01:39:13Z","number":"3","summary":"Current version"},{"date":"2025-07-03T00:10:41Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}