CVE-2016-9898

Опубликовано: 11 июн. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.

Релиз	Статус	Примечание
devel	released	50.1.0+build2-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [50.1.0+build2-0ubuntu0.14.04.1]]
precise	released	50.1.0+build2-0ubuntu0.12.04.1
trusty	released	50.1.0+build2-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [50.1.0+build2-0ubuntu0.14.04.1]
upstream	released	released 50.1.0
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	50.1.0+build2-0ubuntu0.16.04.1
yakkety	released	50.1.0+build2-0ubuntu0.16.10.1

Показывать по

Релиз	Статус	Примечание
devel	released	1:45.7.0+build1-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1:45.7.0+build1-0ubuntu0.14.04.1]]
precise	released	1:45.7.0+build1-0ubuntu0.12.04.1
trusty	released	1:45.7.0+build1-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [1:45.7.0+build1-0ubuntu0.14.04.1]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1:45.7.0+build1-0ubuntu0.16.04.1
yakkety	released	1:45.7.0+build1-0ubuntu0.16.10.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 85%

0.0274

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2016-9898

CVSS3: 9.8

redhat

больше 8 лет назад

Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.

CVE-2016-9898

CVSS3: 9.8

nvd

около 7 лет назад

Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.

CVE-2016-9898

CVSS3: 9.8

debian

около 7 лет назад

Use-after-free resulting in potentially exploitable crash when manipul ...

GHSA-x35g-9jv4-ff77

CVSS3: 9.8

github

больше 3 лет назад

Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.

SUSE-SU-2016:3223-1

suse-cvrf

больше 8 лет назад

Security update for MozillaFirefox

EPSS

Процентиль: 85%

0.0274

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2016-9898

Описание

Пакет firefox

Пакет thunderbird

Ссылки на источники

Связанные уязвимости