Jump to:

CVE-2016-9905

Jump to:

CVE-2016-9905

Package firefox-esr updated to version 45.6.0-alt0.M70P.1 for branch t7 in task 174707.

Published: 2018-06-12
Modified: 2024-11-21

CVE-2016-9905

A potentially exploitable crash in "EnumerateSubDocuments" while adding or removing sub-documents. This vulnerability affects Firefox ESR < 45.6 and Thunderbird < 45.6.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

RHSA-2016:2946
RHSA-2016:2946
RHSA-2016:2973
RHSA-2016:2973
94884
94884
1037462
1037462
https://bugzilla.mozilla.org/show_bug.cgi?id=1293985
https://bugzilla.mozilla.org/show_bug.cgi?id=1293985
GLSA-201701-15
GLSA-201701-15
DSA-3757
DSA-3757
https://www.mozilla.org/security/advisories/mfsa2016-95/
https://www.mozilla.org/security/advisories/mfsa2016-95/
https://www.mozilla.org/security/advisories/mfsa2016-96/
https://www.mozilla.org/security/advisories/mfsa2016-96/

Version: 2.1.0

Package firefox-esr update in t7 on 2016-12-17

ALT-PU-2016-2459-1

Closed vulnerabilities

CVE-2016-9905