---

Log

CVE-2019-9797 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Remote
Type	+ Same-origin policy bypass
Description	+ Cross-origin images can be read in violation of the same-origin policy, in Firefox before 66.0, by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9797 + https://bugzilla.mozilla.org/show_bug.cgi?id=1528909
Notes

CVE-2019-9799 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Remote
Type	+ Information disclosure
Description	+ Insufficient bounds checking of data during inter-process communication in Firefox before 66.0 might allow a compromised content process to be able to read memory from the parent process under certain conditions.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9799 + https://bugzilla.mozilla.org/show_bug.cgi?id=1505678
Notes

CVE-2019-9800 created at 25 Sep 2019 19:31:40
Severity	+ Critical
Remote	+ Remote
Type	+ Arbitrary code execution
Description	+ Several memory safety bugs have been found in Firefox before 67.0 and Thunderbird before 60.7.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with enough effort some of these could be exploited to run arbitrary code.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-13/#CVE-2019-9800 + https://bugzilla.mozilla.org/buglist.cgi?bug_id=1540166%2C1534593%2C1546327%2C1540136%2C1538736%2C1538042%2C1535612%2C1499719%2C1499108%2C1538619%2C1535194%2C1516325%2C1542324%2C1542097%2C1532465%2C1533554%2C1541580
Notes

CVE-2019-9802 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Remote
Type	+ Information disclosure
Description	+ If a Sandbox content process is compromised in Firefox before 66.0, it can initiate an FTP download which will then use a child process to render the downloaded data. The downloaded data can then be passed to the Chrome process with an arbitrary file length supplied by an attacker, bypassing sandbox protections and allow for a potential memory read of adjacent data from the privileged Chrome process, which may include sensitive data.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9802 + https://bugzilla.mozilla.org/show_bug.cgi?id=1415508
Notes

CVE-2019-9803 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Remote
Type	+ Access restriction bypass
Description	+ The Upgrade-Insecure-Requests (UIR) specification states that if UIR is enabled through Content Security Policy (CSP), navigation to a same-origin URL must be upgraded to HTTPS. Firefox before 66.0 will incorrectly navigate to an HTTP URL rather than perform the security upgrade requested by the CSP in some circumstances, allowing for potential man-in-the-middle attacks on the linked resources.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9803 + https://bugzilla.mozilla.org/show_bug.cgi?id=1515863 + https://bugzilla.mozilla.org/show_bug.cgi?id=1437009 + https://w3c.github.io/webappsec-upgrade-insecure-requests/
Notes

CVE-2019-9805 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Remote
Type	+ Information disclosure
Description	+ A latent vulnerability exists in the Prio library in Firefox before 66.0 where data may be read from uninitialized memory for some functions, leading to potential memory corruption.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9805 + https://bugzilla.mozilla.org/show_bug.cgi?id=1521360
Notes

CVE-2019-9806 created at 25 Sep 2019 19:31:40
Severity	+ Low
Remote	+ Remote
Type	+ Denial of service
Description	+ A vulnerability exists in Firefox before 66.0 during authorization prompting for FTP transaction where successive modal prompts are displayed and cannot be immediately dismissed. This allows for a denial of service (DOS) attack.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9806 + https://bugzilla.mozilla.org/show_bug.cgi?id=1525267
Notes

CVE-2019-9807 created at 25 Sep 2019 19:31:40
Severity	+ Low
Remote	+ Remote
Type	+ Content spoofing
Description	+ When arbitrary text is sent over an FTP connection and a page reload is initiated in Firefox before 66.0, it is possible to create a modal alert message with this text as the content. This could potentially be used for social engineering attacks.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9807 + https://bugzilla.mozilla.org/show_bug.cgi?id=1362050
Notes

CVE-2019-9808 created at 25 Sep 2019 19:31:40
Severity	+ Low
Remote	+ Remote
Type	+ Content spoofing
Description	+ If WebRTC permission is requested from documents with data: or blob: URLs in Firefox before 66.0, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the requestee, leading to user confusion about which site is asking for this permission.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9808 + https://bugzilla.mozilla.org/show_bug.cgi?id=1434634
Notes

CVE-2019-9809 created at 25 Sep 2019 19:31:40
Severity	+ Low
Remote	+ Remote
Type	+ Denial of service
Description	+ If the source for resources on a page is through an FTP connection in Firefox before 66.0, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations. These messages cannot be immediately dismissed, allowing for a denial of service (DOS) attack.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9809 + https://bugzilla.mozilla.org/show_bug.cgi?id=1282430 + https://bugzilla.mozilla.org/show_bug.cgi?id=1523249
Notes