Описание
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 36.0+build2-0ubuntu4 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [36.0+build2-0ubuntu0.14.04.4]] |
| lucid | ignored | end of life |
| precise | released | 36.0+build2-0ubuntu0.12.04.5 |
| trusty | released | 36.0+build2-0ubuntu0.14.04.4 |
| trusty/esm | DNE | trusty was released [36.0+build2-0ubuntu0.14.04.4] |
| upstream | released | 36 |
| utopic | released | 36.0+build2-0ubuntu0.14.10.4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:31.5.0+build1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:31.5.0+build1-0ubuntu0.14.04.1]] |
| lucid | ignored | end of life |
| precise | released | 1:31.5.0+build1-0ubuntu0.12.04.1 |
| trusty | released | 1:31.5.0+build1-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1:31.5.0+build1-0ubuntu0.14.04.1] |
| upstream | released | 31.5.0 |
| utopic | released | 1:31.5.0+build1-0ubuntu0.14.10.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation.
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation.
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObject ...
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation.
EPSS
6.8 Medium
CVSS2