Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-26959

Опубликовано: 09 дек. 2020
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.

РелизСтатусПримечание
bionic

released

83.0+build2-0ubuntu0.18.04.2
devel

released

83.0+build2-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

83.0+build2-0ubuntu0.20.04.1
groovy

released

83.0+build2-0ubuntu0.20.10.1
hirsute

released

83.0+build2-0ubuntu1
impish

released

83.0+build2-0ubuntu1
jammy

released

83.0+build2-0ubuntu1
kinetic

released

83.0+build2-0ubuntu1

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/bionic

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/focal

ignored

esm-infra-legacy/trusty

DNE

esm-infra/bionic

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

ignored

focal

ignored

groovy

ignored

end of life
hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
bionic

released

1:78.8.1+build1-0ubuntu0.18.04.1
devel

released

1:78.5.0+build3-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

1:78.7.1+build1-0ubuntu0.20.04.1
groovy

released

1:78.5.0+build3-0ubuntu0.20.10.1
hirsute

released

1:78.5.0+build3-0ubuntu1
impish

released

1:78.5.0+build3-0ubuntu1
jammy

released

1:78.5.0+build3-0ubuntu1
kinetic

released

1:78.5.0+build3-0ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 65%
0.00495
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-26959

CVSS3: 8.8
redhat
около 5 лет назад

During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.

nvd логотип

CVE-2020-26959

CVSS3: 8.8
nvd
около 5 лет назад

During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.

debian логотип

CVE-2020-26959

CVSS3: 8.8
debian
около 5 лет назад

During browser shutdown, reference decrementing could have occured on ...

github логотип

GHSA-w4gq-6hmw-x862

github
больше 3 лет назад

During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.

fstec логотип

BDU:2020-05538

CVSS3: 6.1
fstec
около 5 лет назад

Уязвимость компонента WebRequestService веб-браузера Firefox и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 65%
0.00495
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3