CVE-2017-7779

Source
Severity Critical
Remote Yes
Type Arbitrary code execution
Description
Several memory safety bugs have been found in firefox < 55.0 and thunderbird < 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-385 thunderbird 52.2.1-1 52.3.0-1 Critical Fixed
AVG-375 firefox 54.0.1-1 55.0-1 Critical Fixed
Date Advisory Group Package Severity Description
10 Aug 2017 ASA-201708-3 AVG-375 firefox Critical multiple issues
23 Aug 2017 ASA-201708-18 AVG-385 thunderbird Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/#CVE-2017-7779
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1354443%2C1368576%2C1366903%2C1369913%2C1371424%2C1346590%2C1371890%2C1372985%2C1362924%2C1368105%2C1369994%2C1371283%2C1368362%2C1378826%2C1380426%2C1368030%2C1373220%2C1321384%2C1383002