Lucene search
UbuntuUSN-3688-1HistoryJun 19, 2018 - 12:00 a.m.
Spidermonkey vulnerabilities
2018-06-1900:00:00
ubuntu.com
66
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
81.0%
Releases
- Ubuntu 18.04 ESM
- Ubuntu 17.10
Packages
- mozjs52 - SpiderMonkey JavaScript library
Details
Multiple memory safety issues were fixed in Spidermonkey. An attacker
could potentially exploit these to cause a denial of service, or execute
arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 18.04 | noarch | libmozjs-52-0 | < 52.8.1-0ubuntu0.18.04.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libmozjs-52-0-dbgsym | < 52.8.1-0ubuntu0.18.04.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libmozjs-52-dev | < 52.8.1-0ubuntu0.18.04.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libmozjs-52-dev-dbgsym | < 52.8.1-0ubuntu0.18.04.1 | UNKNOWN |
| Ubuntu | 17.10 | noarch | libmozjs-52-0 | < 52.8.1-0ubuntu0.17.10.1 | UNKNOWN |
| Ubuntu | 17.10 | noarch | libmozjs-52-0-dbgsym | < 52.8.1-0ubuntu0.17.10.1 | UNKNOWN |
| Ubuntu | 17.10 | noarch | libmozjs-52-dev | < 52.8.1-0ubuntu0.17.10.1 | UNKNOWN |
| Ubuntu | 17.10 | noarch | libmozjs-52-dev-dbgsym | < 52.8.1-0ubuntu0.17.10.1 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-3688-1)
2018-06-20 00:00:00
Mageia: Security Advisory (MGASA-2017-0418)
2022-01-28 00:00:00
RedHat Update for thunderbird RHSA-2017:3372-01
2017-12-04 00:00:00
nessus
nessus
Ubuntu 18.04 LTS : Spidermonkey vulnerabilities (USN-3688-1)
2018-06-20 00:00:00
openSUSE Security Update : Mozilla Thunderbird (openSUSE-2017-1311)
2017-11-28 00:00:00
SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2017:3213-1)
2017-12-06 00:00:00
cvelist
cvelist
redhatcve
redhatcve
ubuntucve
ubuntucve
nvd
nvd
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:19:40
Arbitrary Code Execution
2019-05-02 06:37:15
Arbitrary Code Execution
2019-01-15 09:21:59
prion
prion
Memory corruption
2018-06-11 21:29:00
Memory corruption
2018-06-11 21:29:00
Memory corruption
2018-06-11 21:29:00
cve
cve
debiancve
debiancve
alpinelinux
alpinelinux
CVE-2018-5089
2018-06-11 21:29:12
osv
osv
thunderbird - security update
2017-12-09 00:00:00
firefox-esr - security update
2017-11-15 00:00:00
firefox-esr - security update
2017-11-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 52.5.0-alt1
2017-11-24 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 52.5.0-alt1
2017-11-15 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 52.7.0-alt1
2018-03-24 00:00:00
centos
centos
thunderbird security update
2017-12-06 13:18:36
firefox security update
2017-11-17 16:50:04
thunderbird security update
2018-04-09 23:34:21
debian
debian
[SECURITY] [DSA 4061-1] thunderbird security update
2017-12-10 21:40:56
[SECURITY] [DLA 1172-1] firefox-esr security update
2017-11-15 23:48:16
[SECURITY] [DLA 1199-1] thunderbird security update
2017-12-09 16:46:52
oraclelinux
oraclelinux
thunderbird security update
2017-12-04 00:00:00
firefox security update
2017-11-17 00:00:00
thunderbird security update
2018-04-05 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2017-12-05 21:09:46
Security update for MozillaFirefox (important)
2017-12-07 21:11:24
Security update for MozillaFirefox (important)
2017-11-17 00:07:09
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 52.5 — Mozilla
2017-11-23 00:00:00
Security vulnerabilities fixed in Firefox ESR 52.5 — Mozilla
2017-11-14 00:00:00
Security vulnerabilities fixed in Thunderbird 52.7 — Mozilla
2018-03-23 00:00:00
redhat
redhat
(RHSA-2017:3247) Critical: firefox security update
2017-11-17 07:31:46
(RHSA-2017:3372) Important: thunderbird security update
2017-12-03 23:25:45
(RHSA-2018:0648) Important: thunderbird security update
2018-04-05 19:02:49
kaspersky
kaspersky
KLA11145 Multiple vulnerabilities in Mozilla Thunderbird
2017-11-23 00:00:00
KLA11229 Multiple vulnerabilities in Mozilla Thunderbird
2018-03-23 00:00:00
archlinux
archlinux
[ASA-201711-43] thunderbird: multiple issues
2017-11-30 00:00:00
[ASA-201803-22] thunderbird: multiple issues
2018-03-24 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerabilities
2017-11-19 14:20:04
Updated thunderbird packages fix security vulnerabilities & bugs
2017-11-29 21:52:42
Updated thunderbird packages fix bugs and security vulnerabilities
2018-04-20 20:24:13
ubuntu
ubuntu
Thunderbird vulnerabilities
2017-12-01 00:00:00
Thunderbird vulnerabilities
2018-03-29 00:00:00
threatpost
threatpost
Firefox, Chrome Patch Vulnerabilities, Add Security Features
2018-01-25 13:51:58
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
81.0%
Related for USN-3688-1