Security researcher Gustavo Grieco reported a buffer underflow in libjar triggered through a maliciously crafted ZIP format file. This results in a potentially exploitable crash.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 42 | |
firefox esr | lt | 38.4 | |
thunderbird | lt | 38.4 |