CVE-2014-1513

Priority
Description
TypedArrayObject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x
before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not
prevent a zero-length transition during use of an ArrayBuffer object, which
allows remote attackers to execute arbitrary code or cause a denial of
service (heap-based out-of-bounds write or read) via a crafted web site.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (28.0)
Package
Priority: Low
Upstream:released (24.4.0)
More Information

Updated: 2020-09-10 02:56:18 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)