Candidate: CVE-2015-7178
PublicDate: 2015-09-24 04:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7178
 https://www.mozilla.org/en-US/security/advisories/mfsa2015-113/
Description:
 The ProgramBinary::linkAttributes function in libGLES in ANGLE, as used in
 Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows,
 mishandles shader access, which allows remote attackers to execute
 arbitrary code or cause a denial of service (memory corruption and
 application crash) via crafted (1) OpenGL or (2) WebGL content.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: chrisccoulson
CVSS: 

Patches_firefox: 
upstream_firefox: released (41.0)
precise_firefox: not-affected
trusty_firefox: not-affected
trusty/esm_firefox: DNE (trusty was not-affected)
vivid_firefox: not-affected
devel_firefox: not-affected

Patches_thunderbird:
Priority_thunderbird: low
upstream_thunderbird: pending (38.3.0)
precise_thunderbird: not-affected
trusty_thunderbird: not-affected
trusty/esm_thunderbird: DNE (trusty was not-affected)
vivid_thunderbird: not-affected
devel_thunderbird: not-affected