CVE-2019-17024 log

Source
Severity Critical
Remote Yes
Type Arbitrary code execution
Description
Several memory safety issues have been found in Firefox before 72.0, Firefox ESR before 68.4.1, and Thunderbird before 68.3. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with enough effort some of these could have been exploited to run arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-1086 thunderbird 68.3.1-1 68.4.1-1 Critical Fixed
AVG-1084 firefox 71.0-1 72.0-1 Critical Fixed
Date Advisory Group Package Severity Description
14 Jan 2020 ASA-202001-4 AVG-1086 thunderbird Critical multiple issues
08 Jan 2020 ASA-202001-1 AVG-1084 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17024
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1507180%2C1595470%2C1598605%2C1601826