USN-2833-1

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/USN-2833-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2833-1.json

JSON Data

https://api.osv.dev/v1/vulns/USN-2833-1

Related

CVE-2015-7201
CVE-2015-7202
CVE-2015-7203
CVE-2015-7204
CVE-2015-7205
CVE-2015-7207
CVE-2015-7208
CVE-2015-7210
CVE-2015-7211
CVE-2015-7212
CVE-2015-7213
CVE-2015-7214
CVE-2015-7215
CVE-2015-7216
CVE-2015-7217
CVE-2015-7218
CVE-2015-7219
CVE-2015-7220
CVE-2015-7221
CVE-2015-7222
CVE-2015-7223
UBUNTU-CVE-2015-7201
UBUNTU-CVE-2015-7202
UBUNTU-CVE-2015-7203
UBUNTU-CVE-2015-7204
UBUNTU-CVE-2015-7205
UBUNTU-CVE-2015-7207
UBUNTU-CVE-2015-7208
UBUNTU-CVE-2015-7210
UBUNTU-CVE-2015-7211
UBUNTU-CVE-2015-7212
UBUNTU-CVE-2015-7213
UBUNTU-CVE-2015-7214
UBUNTU-CVE-2015-7215
UBUNTU-CVE-2015-7216
UBUNTU-CVE-2015-7217
UBUNTU-CVE-2015-7218
UBUNTU-CVE-2015-7219
UBUNTU-CVE-2015-7220
UBUNTU-CVE-2015-7221
UBUNTU-CVE-2015-7222
UBUNTU-CVE-2015-7223

Published

2015-12-15T21:49:15.550763Z

Modified

2015-12-15T21:49:15.550763Z

Summary

firefox vulnerabilities

Details

Andrei Vaida, Jesse Ruderman, Bob Clary, Christian Holler, Jesse Ruderman, Eric Rahm, Robert Kaiser, Harald Kirschner, and Michael Henretty discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7201, CVE-2015-7202)

Ronald Crane discovered three buffer overflows through code inspection. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7203, CVE-2015-7220, CVE-2015-7221)

Cajus Pollmeier discovered a crash during javascript variable assignments in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7204)

Ronald Crane discovered a buffer overflow through code inspection. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7205)

It was discovered that it is possible to read cross-origin URLs following a redirect if performance.getEntries() is used with an iframe to host a page. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions. (CVE-2015-7207)

It was discovered that Firefox allows for control characters to be set in cookies. An attacker could potentially exploit this to conduct cookie injection attacks on some web servers. (CVE-2015-7208)

Looben Yang discovered a use-after-free in WebRTC when closing channels in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7210)

Abdulrahman Alqabandi discovered that hash symbol is incorrectly handled when parsing data: URLs. An attacker could potentially exploit this to conduct URL spoofing attacks. (CVE-2015-7211)

Abhishek Arya discovered an integer overflow when allocating large textures. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7212)

Ronald Crane dicovered an integer overflow when processing MP4 format video in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7213)

Tsubasa Iinuma discovered a way to bypass same-origin restrictions using data: and view-source: URLs. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to obtain sensitive information and read local files. (CVE-2015-7214)

Masato Kinugawa discovered a cross-origin information leak in error events in web workers. An attacker could potentially exploit this to obtain sensitive information. (CVE-2015-7215)

Gustavo Grieco discovered that the file chooser crashed on malformed images due to flaws in the Jasper library. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service. (CVE-2015-7216, CVE-2015-7217)

Stuart Larsen discoverd two integer underflows when handling malformed HTTP/2 frames in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash. (CVE-2015-7218, CVE-2015-7219)

Gerald Squelart discovered an integer underflow in the libstagefright library when parsing MP4 format video in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. (CVE-2015-7222)

Kris Maglione discovered a mechanism where web content could use WebExtension APIs to execute code with the privileges of a particular WebExtension. If a user were tricked in to opening a specially crafted website with a vulnerable extension installed, an attacker could potentially exploit this to obtain sensitive information or conduct cross-site scripting (XSS) attacks. (CVE-2015-7223)

References

Affected packages

Ubuntu:14.04:LTS / firefox

Package

Name: firefox
Purl: pkg:deb/ubuntu/firefox@43.0+build1-0ubuntu0.14.04.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

43.0+build1-0ubuntu0.14.04.1

Affected versions

24.*

24.0+build1-0ubuntu1

25.*

25.0+build3-0ubuntu0.13.10.1

28.*

28.0~b2+build1-0ubuntu2

28.0+build1-0ubuntu1

28.0+build2-0ubuntu1

28.0+build2-0ubuntu2

29.*

29.0+build1-0ubuntu0.14.04.2

30.*

30.0+build1-0ubuntu0.14.04.3

31.*

31.0+build1-0ubuntu0.14.04.1

32.*

32.0+build1-0ubuntu0.14.04.1

32.0.3+build1-0ubuntu0.14.04.1

33.*

33.0+build2-0ubuntu0.14.04.1

34.*

34.0+build2-0ubuntu0.14.04.1

35.*

35.0+build3-0ubuntu0.14.04.2

35.0.1+build1-0ubuntu0.14.04.1

36.*

36.0+build2-0ubuntu0.14.04.4

36.0.1+build2-0ubuntu0.14.04.1

36.0.4+build1-0ubuntu0.14.04.1

37.*

37.0+build2-0ubuntu0.14.04.1

37.0.1+build1-0ubuntu0.14.04.1

37.0.2+build1-0ubuntu0.14.04.1

38.*

38.0+build3-0ubuntu0.14.04.1

39.*

39.0+build5-0ubuntu0.14.04.1

39.0.3+build2-0ubuntu0.14.04.1

40.*

40.0+build4-0ubuntu0.14.04.1

40.0+build4-0ubuntu0.14.04.4

40.0.3+build1-0ubuntu0.14.04.1

41.*

41.0+build3-0ubuntu0.14.04.1

41.0.1+build2-0ubuntu0.14.04.1

41.0.2+build2-0ubuntu0.14.04.1

42.*

42.0+build2-0ubuntu0.14.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-dbg"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-dbgsym"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-dev"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-globalmenu"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-af"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-an"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ar"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-as"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ast"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-az"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-be"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-bg"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-bn"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-br"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-bs"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ca"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-cs"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-csb"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-cy"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-da"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-de"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-el"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-en"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-eo"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-es"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-et"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-eu"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-fa"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-fi"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-fr"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-fy"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ga"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-gd"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-gl"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-gu"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-he"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-hi"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-hr"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-hsb"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-hu"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-hy"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-id"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-is"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-it"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ja"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ka"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-kk"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-km"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-kn"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ko"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ku"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-lg"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-lt"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-lv"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-mai"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-mk"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ml"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-mn"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-mr"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ms"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-nb"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-nl"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-nn"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-nso"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-oc"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-or"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-pa"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-pl"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-pt"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ro"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ru"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-si"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sk"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sl"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sq"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sr"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sv"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-sw"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-ta"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-te"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-th"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-tr"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-uk"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-uz"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-vi"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-xh"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-zh-hans"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-zh-hant"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-locale-zu"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-mozsymbols"
        },
        {
            "binary_version": "43.0+build1-0ubuntu0.14.04.1",
            "binary_name": "firefox-testsuite"
        }
    ]
}