CVE-2019-17010 - log back

CVE-2019-17010 edited at 06 Dec 2019 09:35:48
Description
- A use-after-free vulnerability has been found in Firefox before 71.0. Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.
+ A use-after-free vulnerability has been found in Firefox before 71.0 and Thunderbird before 68.3. Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.
CVE-2019-17010 edited at 03 Dec 2019 19:46:37
Description
- A user-after-free vulnerability has been found in Firefox before 71.0. Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.
+ A use-after-free vulnerability has been found in Firefox before 71.0. Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.
CVE-2019-17010 edited at 03 Dec 2019 19:45:02
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ A user-after-free vulnerability has been found in Firefox before 71.0. Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-17010
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1581084
Notes
CVE-2019-17010 created at 03 Dec 2019 19:34:26