Lucene search
UbuntuUSN-3919-1HistoryMar 25, 2019 - 12:00 a.m.
Firefox vulnerabilities
2019-03-2500:00:00
ubuntu.com
74
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.952 High
EPSS
Percentile
99.3%
Releases
- Ubuntu 18.10
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- firefox - Mozilla Open Source web browser
Details
Two security issues were discovered in the JavaScript engine in Firefox.
If a user were tricked in to opening a specially crafted website, an
attacker could exploit this by causing a denial of service, or executing
arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 18.10 | noarch | firefox | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-dbg | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-dev | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-globalmenu | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-af | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-an | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-ar | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-as | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-ast | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
| Ubuntu | 18.10 | noarch | firefox-locale-az | < 66.0.1+build1-0ubuntu0.18.10.1 | UNKNOWN |
Related
openvas
openvas
Slackware: Security Advisory (SSA:2019-081-01)
2022-04-21 00:00:00
Mozilla Firefox Security Advisories (MFSA2019-09, MFSA2019-10) - Windows
2019-03-26 00:00:00
CentOS Update for firefox CESA-2019:0672 centos6
2019-04-03 00:00:00
nessus
nessus
Mozilla Firefox ESR < 60.6.1
2019-03-27 00:00:00
Mozilla Thunderbird < 60.6.1
2019-03-29 00:00:00
CentOS 7 : firefox (CESA-2019:0671)
2019-04-02 00:00:00
kaspersky
kaspersky
KLA11453 Multiple vulnerabilities in Mozilla Thunderbird
2019-03-25 00:00:00
KLA11450 Multiple vulnerabilities in Mozilla Firefox
2019-03-22 00:00:00
KLA11451 Multiple vulnerabilities in Mozilla Firefox ESR
2019-03-22 00:00:00
osv
osv
firefox-esr - security update
2019-03-24 00:00:00
firefox-esr - security update
2019-03-25 00:00:00
oraclelinux
oraclelinux
firefox security update
2019-03-27 00:00:00
firefox security update
2019-03-28 00:00:00
thunderbird security update
2019-03-28 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 60.6.1 — Mozilla
2019-03-22 00:00:00
Security vulnerabilities fixed in Firefox 66.0.1 — Mozilla
2019-03-22 00:00:00
Security vulnerabilities fixed in Thunderbird 60.6.1 — Mozilla
2019-03-25 00:00:00
redhat
redhat
(RHSA-2019:0671) Critical: firefox security update
2019-03-27 07:14:51
(RHSA-2019:0672) Critical: firefox security update
2019-03-27 08:48:21
(RHSA-2019:0966) Critical: firefox security update
2019-05-07 03:37:57
archlinux
archlinux
[ASA-201904-4] thunderbird: arbitrary code execution
2019-04-06 00:00:00
[ASA-201903-14] firefox: arbitrary code execution
2019-03-23 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2019-04-04 00:00:00
Security update for MozillaFirefox (important)
2019-03-29 00:00:00
Security update for MozillaFirefox (important)
2019-03-27 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 60.6.1-alt1
2019-03-23 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 60.6.1-alt1
2019-03-26 00:00:00
debian
debian
[SECURITY] [DLA 1727-1] firefox-esr security update
2019-03-25 13:12:18
[SECURITY] [DSA 4417-1] firefox-esr security update
2019-03-24 20:15:52
centos
centos
firefox security update
2019-04-01 19:07:32
firefox security update
2019-04-01 19:05:36
thunderbird security update
2019-04-01 19:08:08
slackware
slackware
[slackware-security] mozilla-firefox
2019-03-22 21:29:01
mageia
mageia
Updated firefox packages fix security vulnerability
2019-04-05 21:12:59
Updated thunderbird packages fix security vulnerability
2019-04-05 21:12:59
ibm
ibm
Security Bulletin: Multiple Mozilla Firefox vulnerabilities in IBM SONAS
2019-07-08 08:55:01
ubuntucve
ubuntucve
CVE-2019-9810
2019-03-25 00:00:00
CVE-2019-9813
2019-03-25 00:00:00
prion
prion
Buffer overflow
2019-04-26 17:29:00
Type confusion
2019-04-26 17:29:00
nvd
nvd
CVE-2019-9810
2019-04-26 17:29:04
CVE-2019-9813
2019-04-26 17:29:04
packetstorm
packetstorm
Firefox Array.prototype.slice Buffer Overflow
2019-03-27 00:00:00
SpiderMonkey IonMonkey Type Confusion
2019-03-29 00:00:00
cve
cve
CVE-2019-9813
2019-04-26 17:29:04
CVE-2019-9810
2019-04-26 17:29:04
exploitpack
exploitpack
cisa
cisa
Mozilla Releases Security Update for Thunderbird
2019-03-25 00:00:00
alpinelinux
alpinelinux
CVE-2019-9813
2019-04-26 17:29:04
CVE-2019-9810
2019-04-26 17:29:04
redhatcve
redhatcve
CVE-2019-9813
2020-08-18 11:15:53
CVE-2019-9810
2020-04-03 14:01:31
debiancve
debiancve
CVE-2019-9813
2019-04-26 17:29:04
CVE-2019-9810
2019-04-26 17:29:04
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox IonMonkey JIT Compiler Buffer Overflow (CVE-2019-9810)
2019-04-03 00:00:00
Mozilla Firefox IonMonkey JIT Compiler Type Confusion (CVE-2019-9813)
2019-04-21 00:00:00
cvelist
cvelist
CVE-2019-9813
2019-04-26 16:09:57
CVE-2019-9810
2019-04-26 16:10:13
zdi
zdi
veracode
veracode
Buffer Overflow
2019-05-16 03:58:52
Type Confusion
2019-05-16 03:58:49
zdt
zdt
attackerkb
attackerkb
CVE-2019-9810
2019-04-26 00:00:00
githubexploit
githubexploit
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox
2019-05-05 17:19:02
Exploit for Type Confusion in Mozilla Thunderbird
2020-04-13 15:11:46
Exploit for Improper Input Validation in Mozilla Firefox Esr
2019-09-29 07:08:52
exploitdb
exploitdb
ubuntu
ubuntu
Thunderbird vulnerabilities
2019-03-28 00:00:00
amazon
amazon
Critical: thunderbird
2019-04-25 16:37:00
thn
thn
gentoo
gentoo
Mozilla Thunderbird and Firefox: Multiple vulnerabilities
2019-04-02 00:00:00
kitploit
kitploit
Fuzzilli - A JavaScript Engine Fuzzer
2020-11-21 20:30:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.952 High
EPSS
Percentile
99.3%
Related for USN-3919-1