CVE-2014-1563

Priority
Description
Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff
function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and
Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary
code or cause a denial of service (heap memory corruption) via an SVG
animation with DOM interaction that triggers incorrect cycle collection.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (32.0)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [32.0+build1-0ubuntu0.14.04.1])
Package
Priority: Low
Upstream:released (31.1.0)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1:31.1.0+build2-0ubuntu0.14.04.1])
More Information

Updated: 2020-03-18 22:17:26 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)