CVE-2019-11693

N/A

Descricao

The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado7/23/2019

Ultima modificacao11/25/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

linux:linux_kernelmozilla:firefoxmozilla:thunderbird

Fraquezas (CWE)

CWE-787

Referencias

https://bugzilla.mozilla.org/show_bug.cgi?id=1532525(security@mozilla.org)

https://www.mozilla.org/security/advisories/mfsa2019-13/(security@mozilla.org)

https://www.mozilla.org/security/advisories/mfsa2019-14/(security@mozilla.org)

https://www.mozilla.org/security/advisories/mfsa2019-15/(security@mozilla.org)

https://bugzilla.mozilla.org/show_bug.cgi?id=1532525(af854a3a-2127-422b-91ae-364da2661108)

https://www.mozilla.org/security/advisories/mfsa2019-13/(af854a3a-2127-422b-91ae-364da2661108)

https://www.mozilla.org/security/advisories/mfsa2019-14/(af854a3a-2127-422b-91ae-364da2661108)

https://www.mozilla.org/security/advisories/mfsa2019-15/(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.