1
PublicDateAtUSN: 2015-07-05
2
Candidate: CVE-2015-2728
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2728
6
https://www.mozilla.org/en-US/security/advisories/mfsa2015-61/
7
https://bugzilla.mozilla.org/show_bug.cgi?id=1142210
8
http://www.mozilla.org/security/announce/2015/mfsa2015-61.html
9
https://usn.ubuntu.com/usn/usn-2656-1
10
https://usn.ubuntu.com/usn/usn-2656-2
12
The IndexedDatabaseManager class in the IndexedDB implementation in Mozilla
13
Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1
14
misinterprets an unspecified IDBDatabase field as a pointer, which allows
15
remote attackers to execute arbitrary code or cause a denial of service
16
(memory corruption and application crash) via unspecified vectors, related
17
to a "type confusion" issue.
23
Assigned-to: chrisccoulson
26
upstream_firefox: released (39.0)
27
precise_firefox: released (39.0+build5-0ubuntu0.12.04.2)
28
trusty_firefox: released (39.0+build5-0ubuntu0.14.04.1)
29
utopic_firefox: released (39.0+build5-0ubuntu0.14.10.1)
30
vivid_firefox: released (39.0+build5-0ubuntu0.15.04.1)
31
devel_firefox: released (39.0+build5-0ubuntu1)