CVE-2016-5258

Priority
Description
Use-after-free vulnerability in the WebRTC socket thread in Mozilla Firefox
before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to
execute arbitrary code by leveraging incorrect free operations on DTLS
objects during the shutdown of a WebRTC session.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (48)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [48.0+build2-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (48.0+build2-0ubuntu0.16.04.1)
Package
Priority: Low
Upstream:not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
More Information

Updated: 2020-07-28 19:57:50 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)