Memory Corruption

2019-05-1603:07:54

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.005 Low

EPSS

Percentile

77.0%

JSON

Mozilla Firefox and Firefox ESR are vulnerable to memory corruption attacks. An attacker could execute arbitrary code in the context of the affected application which may leads to result in denial of service conditions.

CPENameOperatorVersion
firefoxeq38.6.1__1.el6_7
firefoxeq3.6.17__1.el6_0
firefoxeq31.5.0__1.el6_6
firefoxeq24.4.0__1.el6_5
firefoxeq38.7.0__1.el6_7
firefoxeq10.0.5__1.el6_2
firefoxeq10.0.8__1.el6_3
firefoxeq3.6.14__4.el6_0
firefoxeq17.0.10__1.el6_4
firefoxeq38.1.1__1.el6_7

Name	Operator	Version
firefox	eq	38.6.1__1.el6_7
firefox	eq	3.6.17__1.el6_0
firefox	eq	31.5.0__1.el6_6
firefox	eq	24.4.0__1.el6_5
firefox	eq	38.7.0__1.el6_7
firefox	eq	10.0.5__1.el6_2
firefox	eq	10.0.8__1.el6_3
firefox	eq	3.6.14__4.el6_0
firefox	eq	17.0.10__1.el6_4
firefox	eq	38.1.1__1.el6_7

Rows per page:

1-10 of 3281

References

www.securityfocus.com/bid/104555

access.redhat.com/errata/RHSA-2018:2112

access.redhat.com/errata/RHSA-2018:2113

access.redhat.com/errata/RHSA-2018:2251

access.redhat.com/errata/RHSA-2018:2252

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/buglist.cgi?bug_id=1456189%2C1456975%2C1465898%2C1392739%2C1451297%2C1464063%2C1437842%2C1442722%2C1452576%2C1450688%2C1458264%2C1458270%2C1465108%2C1464829%2C1464079%2C1463494%2C1458048

lists.debian.org/debian-lts-announce/2018/06/msg00014.html

lists.debian.org/debian-lts-announce/2018/07/msg00013.html

security.gentoo.org/glsa/201810-01

security.gentoo.org/glsa/201811-13

usn.ubuntu.com/3705-1/

usn.ubuntu.com/3714-1/

usn.ubuntu.com/3749-1/

www.debian.org/security/2018/dsa-4244

www.mozilla.org/en-US/security/advisories/mfsa2018-16/

www.mozilla.org/security/advisories/mfsa2018-15/

www.mozilla.org/security/advisories/mfsa2018-16/

www.mozilla.org/security/advisories/mfsa2018-17/