Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-12410

Опубликовано: 09 июл. 2020
Источник: ubuntu
Приоритет: medium
CVSS2: 9.3
CVSS3: 8.8

Описание

Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.

РелизСтатусПримечание
bionic

released

77.0.1+build1-0ubuntu0.18.04.1
devel

released

77.0.1+build1-0ubuntu1
eoan

released

77.0.1+build1-0ubuntu0.19.10.1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

77.0.1+build1-0ubuntu0.20.04.1
groovy

released

77.0.1+build1-0ubuntu1
hirsute

released

77.0.1+build1-0ubuntu1
impish

released

77.0.1+build1-0ubuntu1
jammy

released

77.0.1+build1-0ubuntu1

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

eoan

DNE

esm-apps/bionic

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

eoan

ignored

end of life
esm-apps/focal

ignored

esm-infra-legacy/trusty

DNE

esm-infra/bionic

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

eoan

ignored

end of life
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

released

1:68.10.0+build1-0ubuntu0.18.04.1
devel

released

1:68.9.0+build1-0ubuntu1
eoan

released

1:68.10.0+build1-0ubuntu0.19.10.1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

1:68.10.0+build1-0ubuntu0.20.04.1
groovy

released

1:68.9.0+build1-0ubuntu1
hirsute

released

1:68.9.0+build1-0ubuntu1
impish

released

1:68.9.0+build1-0ubuntu1
jammy

released

1:68.9.0+build1-0ubuntu1

Показывать по

Ссылки на источники

9.3 Critical

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-12410

CVSS3: 8.8
redhat
больше 5 лет назад

Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.

nvd логотип

CVE-2020-12410

CVSS3: 8.8
nvd
больше 5 лет назад

Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.

debian логотип

CVE-2020-12410

CVSS3: 8.8
debian
больше 5 лет назад

Mozilla developers reported memory safety bugs present in Firefox 76 a ...

github логотип

GHSA-rc5h-67pm-gm2w

CVSS3: 8.8
github
больше 3 лет назад

Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.

fstec логотип

BDU:2021-00078

CVSS3: 8.1
fstec
больше 5 лет назад

Уязвимость веб-браузеров Firefox ESR и Firefox и почтового клиента Thunderbird, связанная с выходом операции за допустимые границы буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

9.3 Critical

CVSS2

8.8 High

CVSS3

Уязвимость CVE-2020-12410