firefox/thunderbird is vulnerable to denial of service. The bufferdata
function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash.
Vendor | Product | Version | CPE |
---|---|---|---|
* | firefox | 38.6.1_1.el6_7 | cpe:2.3:a:*:firefox:38.6.1_1.el6_7:*:*:*:*:*:*:* |
* | firefox | 3.6.17_1.el6_0 | cpe:2.3:a:*:firefox:3.6.17_1.el6_0:*:*:*:*:*:*:* |
* | firefox | 31.5.0_1.el6_6 | cpe:2.3:a:*:firefox:31.5.0_1.el6_6:*:*:*:*:*:*:* |
* | firefox | 24.4.0_1.el6_5 | cpe:2.3:a:*:firefox:24.4.0_1.el6_5:*:*:*:*:*:*:* |
* | firefox | 10.0.5_1.el6_2 | cpe:2.3:a:*:firefox:10.0.5_1.el6_2:*:*:*:*:*:*:* |
* | firefox | 38.7.0_1.el6_7 | cpe:2.3:a:*:firefox:38.7.0_1.el6_7:*:*:*:*:*:*:* |
* | firefox | 10.0.8_1.el6_3 | cpe:2.3:a:*:firefox:10.0.8_1.el6_3:*:*:*:*:*:*:* |
* | firefox | 3.6.14_4.el6_0 | cpe:2.3:a:*:firefox:3.6.14_4.el6_0:*:*:*:*:*:*:* |
* | firefox | 17.0.10_1.el6_4 | cpe:2.3:a:*:firefox:17.0.10_1.el6_4:*:*:*:*:*:*:* |
* | firefox | 38.1.1_1.el6_7 | cpe:2.3:a:*:firefox:38.1.1_1.el6_7:*:*:*:*:*:*:* |
access.redhat.com/errata/RHSA-2019:1267
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=1532525
www.mozilla.org/en-US/security/advisories/mfsa2019-14/
www.mozilla.org/security/advisories/mfsa2019-13/
www.mozilla.org/security/advisories/mfsa2019-14/
www.mozilla.org/security/advisories/mfsa2019-15/