PT-2019-4545 · Mozilla+2 · Firefox+2

Mlfbrown

·

Publicado

2019-03-19

·

Atualizado

2024-12-12

·

CVE-2019-9805

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 66
Description A latent issue in the Prio library may cause data to be read from uninitialized memory for some functions, potentially leading to memory corruption. The vulnerability is related to a buffer overflow in memory, which could allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of service.
Recommendations For versions prior to 66, update to version 66 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data until the update is applied.

Correção

Use of Uninitialized Resource

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-908CWE-119

Identificadores relacionados

ALT-PU-2019-1561
ALT-PU-2019-2324
ALT-PU-2019-2486
BDU:2020-00591
CVE-2019-9805
OPENSUSE-SU-2024:10600-1
OPENSUSE-SU-2024:14572-1
USN-3918-1
USN-3918-2
USN-3918-3
USN-3918-4

Produtos afetados

Alt Linux
Firefox
Ubuntu