Уязвимость использования после освобождения памяти (use-after-free) при обработке событий мыши в режимах с поддержкой мультипроцессности в Thunderbird и Firefox
Описание
Уязвимость типа "использование после освобождения" (use-after-free) может возникнуть во время обработки событий мыши из-за проблем с поддержкой мультипроцессности. Это приводит к потенциальной эксплуатации через аварийное завершение работы.
Затронутые версии ПО
- Thunderbird версий до 52.6
- Firefox ESR версий до 52.6
- Firefox версий до 58
Тип уязвимости
- Использование после освобождения памяти (use-after-free)
- Аварийное завершение работы
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
- Issue TrackingPermissions RequiredThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
- Issue TrackingPermissions RequiredThird Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Одно из
Одно из
Одно из
EPSS
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
Связанные уязвимости
A use-after-free vulnerability can occur during mouse event handling due to issues with multiprocess support. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
A use-after-free vulnerability can occur during mouse event handling due to issues with multiprocess support. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
A use-after-free vulnerability can occur during mouse event handling d ...
A use-after-free vulnerability can occur during mouse event handling due to issues with multiprocess support. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
EPSS
9.8 Critical
CVSS3
7.5 High
CVSS2