A use-after-free vulnerability during XSLT processing due to the result handler being held by a freed handler during handling. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.

References

bugzilla.redhat.com/show_bug.cgi?id=1443325

www.mozilla.org/en-US/security/advisories/mfsa2017-11/#CVE-2017-5438

debiancve 1

prion 1

veracode 1

ubuntucve 1

cve 1

nessus 41

oraclelinux 3

ibm 2

openvas 29

mageia 3

debian 2

altlinux 2

osv 2

redhat 3

centos 3

suse 4

mozilla 4

kaspersky 2

ubuntu 3

freebsd 1

archlinux 1

gentoo 1

debiancve

CVE-2017-5438

2018-06-11 21:29:00

prion

Design/Logic Flaw

2018-06-11 21:29:00

veracode

Use After Free

2019-05-02 06:10:04

ubuntucve

CVE-2017-5438

2017-04-20 00:00:00

cve

CVE-2017-5438

2018-06-11 21:29:00

nessus

Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20170420)

2017-04-21 00:00:00

Mozilla Firefox ESR < 52.1 Multiple Vulnerabilities

2017-04-21 00:00:00

Debian DSA-3831-1 : firefox-esr - security update

2017-04-20 00:00:00

oraclelinux

firefox security update

2017-04-20 00:00:00

thunderbird security update

2017-05-08 00:00:00

firefox security update

2017-04-20 00:00:00

ibm

Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM Storwize V7000 Unified

2018-06-18 00:35:38

Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM SONAS.

2018-06-18 00:35:15

openvas

Mozilla Firefox ESR Security Advisories (MFSA2017-10, MFSA2017-11) - Mac OS X

2017-04-20 00:00:00

CentOS Update for firefox CESA-2017:1104 centos6

2017-04-21 00:00:00

Mageia: Security Advisory (MGASA-2017-0118)

2022-01-28 00:00:00

mageia

Updated firefox packages fix security vulnerability

2017-04-28 01:21:29

Updated thunderbird packages fix security vulnerability

2017-05-10 23:47:44

Updated iceape packages fix security vulnerabilities

2018-01-02 14:48:29

debian

[SECURITY] [DLA 906-1] firefox-esr security update

2017-04-21 17:26:13

[SECURITY] [DSA 3831-1] firefox-esr security update

2017-04-19 22:40:29

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 45.9.0-alt1

2017-04-20 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 52.1.0-alt1

2017-05-02 00:00:00

osv

firefox-esr - security update

2017-04-20 00:00:00

firefox-esr - security update

2017-04-21 00:00:00

redhat

(RHSA-2017:1104) Critical: firefox security update

2017-04-20 06:59:53

(RHSA-2017:1201) Important: thunderbird security update

2017-05-08 05:16:37

(RHSA-2017:1106) Critical: firefox security update

2017-04-20 08:50:13

centos

firefox security update

2017-04-20 22:44:21

thunderbird security update

2017-05-09 17:01:33

firefox security update

2017-04-20 23:21:25

suse

Security update for MozillaFirefox, mozilla-nss, mozilla-nspr, java-1_8_0-openjdk (important)

2017-05-11 21:15:07

Security update for MozillaFirefox, mozilla-nss, mozilla-nspr (important)

2017-05-04 15:13:58

Security update for MozillaFirefox, MozillaFirefox-branding-SLE (important)

2017-06-26 12:10:28

mozilla

Security vulnerabilities fixed in Firefox ESR 45.9 — Mozilla

2017-04-19 00:00:00

Security vulnerabilities fixed in Thunderbird 52.1 — Mozilla

2017-04-30 00:00:00

Security vulnerabilities fixed in Firefox ESR 52.1 — Mozilla

2017-04-19 00:00:00

kaspersky

KLA11007 Multiple vulnerabilities in Mozilla Thunderbird

2017-04-30 00:00:00

KLA11004 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

2017-04-19 00:00:00

ubuntu

Thunderbird vulnerabilities

2017-05-16 00:00:00

Firefox regression

2017-05-11 00:00:00

Firefox vulnerabilities

2017-04-21 00:00:00

freebsd

mozilla -- multiple vulnerabilities

2017-04-19 00:00:00

archlinux

[ASA-201704-6] firefox: multiple issues

2017-04-21 00:00:00

gentoo

Mozilla Firefox: Multiple vulnerabilities

2018-02-20 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for RH:CVE-2017-5438