Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7828

Опубликовано: 11 июн. 2018
Источник: debian

Описание

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox < 57, Firefox ESR < 52.5, and Thunderbird < 52.5.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed57.0-1package
firefox-esrfixed52.5.0esr-1package
thunderbirdfixed1:52.5.0-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-24/#CVE-2017-7828

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-25/#CVE-2017-7828

  • https://www.mozilla.org/en-US/security/advisories/mfsa2017-26/#CVE-2017-7828

Связанные уязвимости

ubuntu логотип

CVE-2017-7828

CVSS3: 9.8
ubuntu
больше 7 лет назад

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox < 57, Firefox ESR < 52.5, and Thunderbird < 52.5.

redhat логотип

CVE-2017-7828

CVSS3: 9.8
redhat
около 8 лет назад

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox < 57, Firefox ESR < 52.5, and Thunderbird < 52.5.

nvd логотип

CVE-2017-7828

CVSS3: 9.8
nvd
больше 7 лет назад

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox < 57, Firefox ESR < 52.5, and Thunderbird < 52.5.

github логотип

GHSA-f749-pqmw-rvhp

CVSS3: 9.8
github
больше 3 лет назад

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox < 57, Firefox ESR < 52.5, and Thunderbird < 52.5.

fstec логотип

BDU:2021-00024

CVSS3: 9.8
fstec
около 8 лет назад

Уязвимость реализации объекта «PressShell» браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании