Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-2736

The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to have an unspecified impact via a crafted ZIP archive.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
CONFIRM: https://bugzilla.mozil...
DEBIAN: DSA-3324
SUSE: SUSE-SU-2015:1268
SUSE: SUSE-SU-2015:1269
UBUNTU: USN-2673-1
CONFIRM: http://www.oracle.com/...
CONFIRM: http://www.oracle.com/...
BID: 75541
GENTOO: GLSA-201512-10
SUSE: SUSE-SU-2015:1449
REDHAT: RHSA-2015:1455
SUSE: openSUSE-SU-2015:1266
DEBIAN: DSA-3300
REDHAT: RHSA-2015:1207
SUSE: openSUSE-SU-2015:1229
UBUNTU: USN-2656-1
UBUNTU: USN-2656-2
SECTRACK: 1032783
SECTRACK: 1032784

Launchpad.net

CVE 2015-2736

Related bugs

References