1
PublicDateAtUSN: 2017-04-20
2
Candidate: CVE-2017-5464
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5464
6
https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5464
7
https://usn.ubuntu.com/usn/usn-3260-1
8
https://usn.ubuntu.com/usn/usn-3278-1
10
During DOM manipulations of the accessibility tree through script, the DOM
11
tree can become out of sync with the accessibility tree, leading to memory
12
corruption and a potentially exploitable crash. This vulnerability affects
13
Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox <
20
Assigned-to: chrisccoulson
23
upstream_firefox: released (53.0)
24
precise_firefox: ignored
25
precise/esm_firefox: DNE (precise was ignored)
26
trusty_firefox: released (53.0+build6-0ubuntu0.14.04.1)
27
vivid/ubuntu-core_firefox: DNE
28
vivid/stable-phone-overlay_firefox: DNE
29
xenial_firefox: released (53.0+build6-0ubuntu0.16.04.1)
30
yakkety_firefox: released (53.0+build6-0ubuntu0.16.10.1)
31
zesty_firefox: released (53.0+build6-0ubuntu0.17.04.1)
32
devel_firefox: released (54.0+build3-0ubuntu1)
35
Priority_thunderbird: low
36
upstream_thunderbird: released (52.1.1)
37
precise_thunderbird: ignored (reached end-of-life)
38
precise/esm_thunderbird: DNE (precise was needs-triage)
39
trusty_thunderbird: released (1:52.1.1+build1-0ubuntu0.14.04.1)
40
vivid/ubuntu-core_thunderbird: DNE
41
vivid/stable-phone-overlay_thunderbird: DNE
42
xenial_thunderbird: released (1:52.1.1+build1-0ubuntu0.16.04.1)
43
yakkety_thunderbird: released (1:52.1.1+build1-0ubuntu0.16.10.1)
44
zesty_thunderbird: released (1:52.1.1+build1-0ubuntu0.17.04.1)
45
devel_thunderbird: released (1:52.1.1+build1-0ubuntu1)