This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Necessarily indicate when this vulnerability wasĭiscovered, shared with the affected vendor, publicly The CVE ID was allocated or reserved, and does not The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x. How is it possible to have the same behaviour in Internet Explorer Regards. After typing a value in the search fields in Internet Explorer you lose the focus, in Firefox the focus stays in the same field. The list is not intended to be complete.ĭisclaimer: The record creation date may reflect when I am experiencing different behavior with 'Internet Explorer 11' and 'Firefox ESR 38.8.0'.
MozillaFirefox: Memory safety bug fixed in Firefox ESR 38.8 (MFSA 2016-39). This results in a potentially exploitable crash triggerable through web. REDIRECT Switch to Firefox Extended Support Release (ESR) for personal use.
Using Address Sanitizer, security researcher Sascha Just reported a buffer overflow in the libstagefright library due to issues with the handling of CENC offsets and the sizes table. Download the Firefox Extended Support Release (ESR) version. Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. Unspecified vulnerability in the browser engine in Mozilla Firefox ESR 38.x before 38.8 allows remote attackers to cause a denial of service (memory. Summary: VUL-0: MozillaFirefox 46 / 45.1 ESR / 38.8 ESR security release. Firefox 46 Firefox ESR 38.8 Firefox ESR 45.1 Description.
The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.