Lucene search

PRIOn knowledge basePRION:CVE-2020-15683

HistoryOct 22, 2020 - 9:15 p.m.

Memory corruption

2020-10-2221:15:00

PRIOn knowledge base

www.prio-n.com

9.6 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON

Mozilla developers and community members reported memory safety bugs present in Firefox 81 and Firefox ESR 78.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 78.4, Firefox < 82, and Thunderbird < 78.4.

CPENameOperatorVersion
debian_linuxeq9.0
debian_linuxeq10.0
firefoxlt82.0
firefox_esrlt78.4
thunderbirdlt78.4
leapeq15.1
leapeq15.2

Name	Operator	Version
debian_linux	eq	9.0
debian_linux	eq	10.0
firefox	lt	82.0
firefox_esr	lt	78.4
thunderbird	lt	78.4
leap	eq	15.1
leap	eq	15.2

References

lists.opensuse.org/opensuse-security-announce/2020-10/msg00057.html

lists.opensuse.org/opensuse-security-announce/2020-10/msg00062.html

lists.opensuse.org/opensuse-security-announce/2020-10/msg00074.html

lists.opensuse.org/opensuse-security-announce/2020-10/msg00077.html

bugzilla.mozilla.org/buglist.cgi?bug_id=1576843%2C1656987%2C1660954%2C1662760%2C1663439%2C1666140

lists.debian.org/debian-lts-announce/2020/10/msg00027.html

security.gentoo.org/glsa/202010-08

www.debian.org/security/2020/dsa-4780

www.mozilla.org/security/advisories/mfsa2020-45/

www.mozilla.org/security/advisories/mfsa2020-46/

www.mozilla.org/security/advisories/mfsa2020-47/