Launchpad CVE tracker

CVE 2019-17017

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://www.mozilla.or...
CONFIRM: https://www.mozilla.or...
MISC: https://bugzilla.mozil...
BUGTRAQ: 20200109 [SECURITY] [D...
DEBIAN: DSA-4600
MLIST: [debian-lts-announce] ...
UBUNTU: USN-4234-1
BUGTRAQ: 20200112 [slackware-se...
MISC: http://packetstormsecu...
REDHAT: RHSA-2020:0085
REDHAT: RHSA-2020:0086
REDHAT: RHSA-2020:0111
SUSE: openSUSE-SU-2020:0060
REDHAT: RHSA-2020:0120
REDHAT: RHSA-2020:0123
REDHAT: RHSA-2020:0127
UBUNTU: USN-4241-1
DEBIAN: DSA-4603
BUGTRAQ: 20200120 [SECURITY] [D...
MLIST: [debian-lts-announce] ...
SUSE: openSUSE-SU-2020:0094
REDHAT: RHSA-2020:0292
REDHAT: RHSA-2020:0295
GENTOO: GLSA-202003-02
UBUNTU: USN-4335-1

Launchpad.net

CVE 2019-17017

Related bugs

References