Launchpad.net

CVE 2014-1537

Use-after-free vulnerability in the mozilla::dom::workers::WorkerPrivateParent function in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

Related bugs and status

CVE-2014-1537 (Candidate) is related to these bugs:

Bug #469752: firefox,3.5/3.6 startup-notification bug

		In	Importance	Status
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Ubuntu)	Medium	Invalid
469752	firefox,3.5/3.6 startup-notification bug	Mozilla Firefox	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Suse)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox (Ubuntu)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox (Ubuntu Lucid)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Ubuntu Lucid)	Medium	Invalid

Bug #1331356: Update to Thunderbird 24.6 in Ubuntu 14.04

Summary				In	Importance	Status
	1331356	Update to Thunderbird 24.6 in Ubuntu 14.04		thunderbird (Ubuntu)	Undecided	New

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
CONFIRM: https://bugzilla.mozil...
BID: 67971
SECTRACK: 1030386
SECTRACK: 1030388
SECUNIA: 59052
SECUNIA: 59171
SECUNIA: 59229
SUSE: openSUSE-SU-2014:0855
SUSE: openSUSE-SU-2014:0858
SECUNIA: 59866
SECUNIA: 59377
SECUNIA: 59387
CONFIRM: http://www.oracle.com/...
GENTOO: GLSA-201504-01
SECUNIA: 59425
SECUNIA: 59486
SUSE: SUSE-SU-2014:0824
SUSE: openSUSE-SU-2014:0797
SUSE: openSUSE-SU-2014:0819
UBUNTU: USN-2243-1