Launchpad CVE tracker

CVE 2019-11713

A use-after-free vulnerability can occur in HTTP/2 when a cached HTTP/2 stream is closed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8.

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.mozil...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
SUSE: openSUSE-SU-2019:1811
SUSE: openSUSE-SU-2019:1813
MLIST: [debian-lts-announce] ...
MLIST: [debian-lts-announce] ...
GENTOO: GLSA-201908-12
GENTOO: GLSA-201908-20
SUSE: openSUSE-SU-2019:1990
SUSE: openSUSE-SU-2019:2248
SUSE: openSUSE-SU-2019:2249

Launchpad.net

CVE 2019-11713

Related bugs

References