Описание
The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 40.0+build4-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [40.0+build4-0ubuntu0.14.04.1]] |
| precise | released | 40.0+build4-0ubuntu0.12.04.1 |
| trusty | released | 40.0+build4-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [40.0+build4-0ubuntu0.14.04.1] |
| upstream | released | 40.0 |
| vivid | released | 40.0+build4-0ubuntu0.15.04.1 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.
The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.
The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript ...
The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.
Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2