---

CVE-2019-17008 - log back

CVE-2019-17008 edited at 06 Dec 2019 09:35:52

Description

- A use-after-free vulnerability has been found in Firefox before 71.0. When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash. + A use-after-free vulnerability has been found in Firefox before 71.0 and Thunderbird before 68.3. When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash.

CVE-2019-17008 edited at 03 Dec 2019 19:46:32
Severity	- Unknown + Critical
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ A use-after-free vulnerability has been found in Firefox before 71.0. When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-17008 + https://bugzilla.mozilla.org/show_bug.cgi?id=1546331
Notes

CVE-2019-17008 created at 03 Dec 2019 19:34:26