Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-7749
Vulnerability from cvelistv5
Published
2018-06-11 21:00
Modified
2024-08-05 16:12
Severity ?
EPSS score ?
Summary
A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.
References
Impacted products
| Vendor | Product | Version | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ▼ | Mozilla | Firefox |
Version: unspecified < 54 |
|||||||||||
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T16:12:28.259Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
},
{
"name": "99057",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/99057"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"name": "DSA-3918",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-3918"
},
{
"name": "1038689",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1038689"
},
{
"name": "DSA-3881",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-3881"
},
{
"name": "RHSA-2017:1440",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"name": "RHSA-2017:1561",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "54",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "52.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "52.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"datePublic": "2017-06-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Use-after-free during docshell reloading",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-06-12T09:57:01",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
},
{
"name": "99057",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/99057"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"name": "DSA-3918",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-3918"
},
{
"name": "1038689",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1038689"
},
{
"name": "DSA-3881",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-3881"
},
{
"name": "RHSA-2017:1440",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"name": "RHSA-2017:1561",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2017-7749",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "54"
}
]
}
},
{
"product_name": "Firefox ESR",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
},
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use-after-free during docshell reloading"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039",
"refsource": "CONFIRM",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
},
{
"name": "99057",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/99057"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-15/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"name": "DSA-3918",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3918"
},
{
"name": "1038689",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1038689"
},
{
"name": "DSA-3881",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3881"
},
{
"name": "RHSA-2017:1440",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"name": "RHSA-2017:1561",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-17/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-16/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2017-7749",
"datePublished": "2018-06-11T21:00:00",
"dateReserved": "2017-04-12T00:00:00",
"dateUpdated": "2024-08-05T16:12:28.259Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-7749\",\"sourceIdentifier\":\"security@mozilla.org\",\"published\":\"2018-06-11T21:29:07.657\",\"lastModified\":\"2024-11-21T03:32:34.817\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de uso de memoria previamente liberada al emplear una URL incorrecta durante la recarga de un docshell. Esto resulta en un cierre inesperado potencialmente explotable. La vulnerabilidad afecta a Firefox en versiones anteriores a la 54, Firefox ESR en versiones anteriores a la 52.2 y Thunderbird en versiones anteriores a la 52.2.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98381E61-F082-4302-B51F-5648884F998B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D99A687E-EAE6-417E-A88E-D0082BC194CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"54.0\",\"matchCriteriaId\":\"12FE3109-0EE6-49DC-974A-E522F55B17E1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"52.2.0\",\"matchCriteriaId\":\"35834B4C-4C58-48A9-9D51-2F590C8ABEED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"52.2.0\",\"matchCriteriaId\":\"37E2AFA4-8E1E-4074-BA83-B32D702B439C\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/99057\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038689\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1440\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1561\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1355039\",\"source\":\"security@mozilla.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3881\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3918\",\"source\":\"security@mozilla.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-15/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-16/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-17/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/99057\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038689\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1440\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1355039\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3881\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3918\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-15/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-16/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2017-17/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
rhsa-2017_1561
Vulnerability from csaf_redhat
Published
2017-06-21 04:36
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 52.2.0.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 52.2.0.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1561",
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1561.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:42+00:00",
"generator": {
"date": "2024-11-22T11:12:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1561",
"initial_release_date": "2017-06-21T04:36:28+00:00",
"revision_history": [
{
"date": "2017-06-21T04:36:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-21T04:36:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product_id": "thunderbird-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product_id": "thunderbird-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
RHSA-2017:1440
Vulnerability from csaf_redhat
Published
2017-06-14 07:51
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: firefox security update
Notes
Topic
An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 52.2.0 ESR.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 52.2.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1440",
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1440.json"
}
],
"title": "Red Hat Security Advisory: firefox security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:36+00:00",
"generator": {
"date": "2024-11-22T11:12:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1440",
"initial_release_date": "2017-06-14T07:51:35+00:00",
"revision_history": [
{
"date": "2017-06-14T07:51:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-14T07:51:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.src",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.src",
"product_id": "firefox-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.src",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.src",
"product_id": "firefox-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
rhsa-2017_1440
Vulnerability from csaf_redhat
Published
2017-06-14 07:51
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: firefox security update
Notes
Topic
An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 52.2.0 ESR.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 52.2.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1440",
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1440.json"
}
],
"title": "Red Hat Security Advisory: firefox security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:36+00:00",
"generator": {
"date": "2024-11-22T11:12:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1440",
"initial_release_date": "2017-06-14T07:51:35+00:00",
"revision_history": [
{
"date": "2017-06-14T07:51:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-14T07:51:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.src",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.src",
"product_id": "firefox-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.src",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.src",
"product_id": "firefox-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
RHSA-2017:1561
Vulnerability from csaf_redhat
Published
2017-06-21 04:36
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 52.2.0.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 52.2.0.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1561",
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1561.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:42+00:00",
"generator": {
"date": "2024-11-22T11:12:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1561",
"initial_release_date": "2017-06-21T04:36:28+00:00",
"revision_history": [
{
"date": "2017-06-21T04:36:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-21T04:36:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product_id": "thunderbird-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product_id": "thunderbird-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
rhsa-2017:1440
Vulnerability from csaf_redhat
Published
2017-06-14 07:51
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: firefox security update
Notes
Topic
An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 52.2.0 ESR.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Firefox is an open source web browser.\n\nThis update upgrades Firefox to version 52.2.0 ESR.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar of Zimperium zLabs, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Tyson Smith, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1440",
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1440.json"
}
],
"title": "Red Hat Security Advisory: firefox security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:36+00:00",
"generator": {
"date": "2024-11-22T11:12:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1440",
"initial_release_date": "2017-06-14T07:51:35+00:00",
"revision_history": [
{
"date": "2017-06-14T07:51:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-14T07:51:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_id": "firefox-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_id": "firefox-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.i686",
"product_id": "firefox-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.i686",
"product_id": "firefox-0:52.2.0-1.el7_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.src",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.src",
"product_id": "firefox-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.src",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.src",
"product_id": "firefox-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390",
"product_id": "firefox-0:52.2.0-1.el6_9.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390",
"product_id": "firefox-0:52.2.0-1.el7_3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.s390x",
"product_id": "firefox-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.s390x",
"product_id": "firefox-0:52.2.0-1.el7_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_id": "firefox-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_id": "firefox-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_id": "firefox-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/firefox@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-14T07:51:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Firefox must be restarted for the changes to take effect.",
"product_ids": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Client-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6ComputeNode-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6ComputeNode-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.src",
"6Workstation-optional-6.9.z:firefox-0:52.2.0-1.el6_9.x86_64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-optional-6.9.z:firefox-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Client-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Client-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Server-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.src",
"7Workstation-optional-7.3.Z:firefox-0:52.2.0-1.el7_3.x86_64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.i686",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.s390x",
"7Workstation-optional-7.3.Z:firefox-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
rhsa-2017:1561
Vulnerability from csaf_redhat
Published
2017-06-21 04:36
Modified
2024-11-22 11:12
Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 52.2.0.
Security Fix(es):
* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 52.2.0.\n\nSecurity Fix(es):\n\n* Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778, CVE-2017-7752, CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764)\n\nRed Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Nils, Nicolas Trippar (Zimperium zLabs), Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, Andr\u00e9 Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, Samuel Erb, Holger Fuhrmannek, Abhishek Arya, and F. Alonso (revskills) as the original reporters.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1561",
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1561.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2024-11-22T11:12:42+00:00",
"generator": {
"date": "2024-11-22T11:12:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1561",
"initial_release_date": "2017-06-21T04:36:28+00:00",
"revision_history": [
{
"date": "2017-06-21T04:36:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-06-21T04:36:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:12:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_id": "thunderbird-0:52.2.0-1.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.src",
"product_id": "thunderbird-0:52.2.0-1.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.src",
"product_id": "thunderbird-0:52.2.0-1.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_id": "thunderbird-0:52.2.0-1.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_id": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el6_9?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_id": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@52.2.0-1.el7_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_id": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@52.2.0-1.el7_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Client-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.src",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"relates_to_product_reference": "7Workstation-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"relates_to_product_reference": "7Workstation-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Tyson Smith",
"Mats Palmgren",
"Philipp",
"Masayuki Nakano",
"Christian Holler",
"Andrew McCreight",
"Gary Kwong",
"Andr\u00e9 Bargull",
"Carsten Book",
"Jesse Schwartzentruber",
"Julian Hector",
"Marcia Knous",
"Ronald Crane",
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5470",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461264"
}
],
"notes": [
{
"category": "description",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "RHBZ#1461264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5470"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5470"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-5472",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461252"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "RHBZ#1461252",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461252"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5472",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5472"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-5472"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Mozilla: Use-after-free using destroyed node when regenerating trees (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7749",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461253"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "RHBZ#1461253",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461253"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7749",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7749"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7749"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free during docshell reloading (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7750",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461254"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with track elements (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "RHBZ#1461254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461254"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7750"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7750"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with track elements (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7751",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461255"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "RHBZ#1461255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461255"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7751",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7751"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7751"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free with content viewer listeners (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7752",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461256"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free with IME input (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "RHBZ#1461256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461256"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7752",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7752"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7752"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free with IME input (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nils"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7754",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461257"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "RHBZ#1461257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7754"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7754"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in WebGL with ImageInfo object (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Abhishek Arya"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7756",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461258"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "RHBZ#1461258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7756",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7756"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7756"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Use-after-free and use-after-scope logging XHR header errors (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"F. Alonso"
],
"organization": "revskills",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7757",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461259"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "RHBZ#1461259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461259"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7757"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7757"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Use-after-free in IndexedDB (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Nicolas Trippar"
],
"organization": "Zimperium zLabs",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7758",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461261"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "RHBZ#1461261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7758",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7758"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7758"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7758"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Out-of-bounds read in Opus encoder (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Erb"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7764",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461262"
}
],
"notes": [
{
"category": "description",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "RHBZ#1461262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7764",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7764"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7764"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Domain spoofing with combination of Canadian Syllabics and other unicode blocks (MFSA 2017-16)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7771",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472212"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Pass::readPass\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read in \"graphite2::Pass::readPass\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "RHBZ#1472212",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472212"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7771",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7771"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7771"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read in \"graphite2::Pass::readPass\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7772",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472213"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "RHBZ#1472213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472213"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7772",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7772"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (CVE-2017-7772)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7773",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472215"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw related to \"lz4::decompress\" (src/Decompressor) has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "RHBZ#1472215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7773",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7773"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "graphite2: heap-buffer-overflow write \"lz4::decompress\" (src/Decompressor)"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7774",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472219"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::readGraphite\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "RHBZ#1472219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7774",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7774"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: out of bounds read \"graphite2::Silf::readGraphite\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7775",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472221"
}
],
"notes": [
{
"category": "description",
"text": "An assertion error has been reported in graphite2. An attacker could possibly exploit this flaw to cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: assertion error \"size() \u003e n\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "RHBZ#1472221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472221"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7775",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7775"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: assertion error \"size() \u003e n\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7776",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472223"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw related to \"graphite2::Silf::getClassGlyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "RHBZ#1472223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7776",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7776"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7776"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: heap-buffer-overflow read \"graphite2::Silf::getClassGlyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7777",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1472225"
}
],
"notes": [
{
"category": "description",
"text": "The use of uninitialized memory related to \"graphite2::GlyphCache::Loader::read_glyph\" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\"",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "RHBZ#1472225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472225"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7777",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7777"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7777"
},
{
"category": "external",
"summary": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/",
"url": "https://sourceforge.net/p/silgraphite/mailman/message/35824024/"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "graphite2: use of uninitialized memory \"graphite2::GlyphCache::Loader::read_glyph\""
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Holger Fuhrmannek",
"Tyson Smith"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2017-7778",
"discovery_date": "2017-06-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461260"
}
],
"notes": [
{
"category": "description",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "RHBZ#1461260",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461260"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7778",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7778"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/#CVE-2017-7778"
}
],
"release_date": "2017-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-06-21T04:36:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Client-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Client-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Server-optional-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Server-optional-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.src",
"6Workstation-6.9.z:thunderbird-0:52.2.0-1.el6_9.x86_64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.i686",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.ppc64",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.s390x",
"6Workstation-6.9.z:thunderbird-debuginfo-0:52.2.0-1.el6_9.x86_64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Client-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Client-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Server-optional-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Server-optional-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.src",
"7Workstation-7.3.Z:thunderbird-0:52.2.0-1.el7_3.x86_64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.aarch64",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.ppc64le",
"7Workstation-7.3.Z:thunderbird-debuginfo-0:52.2.0-1.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Vulnerabilities in the Graphite 2 library (MFSA 2017-16)"
}
]
}
gsd-2017-7749
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-7749",
"description": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"id": "GSD-2017-7749",
"references": [
"https://www.suse.com/security/cve/CVE-2017-7749.html",
"https://www.debian.org/security/2017/dsa-3918",
"https://www.debian.org/security/2017/dsa-3881",
"https://access.redhat.com/errata/RHSA-2017:1561",
"https://access.redhat.com/errata/RHSA-2017:1440",
"https://ubuntu.com/security/CVE-2017-7749",
"https://advisories.mageia.org/CVE-2017-7749.html",
"https://security.archlinux.org/CVE-2017-7749",
"https://linux.oracle.com/cve/CVE-2017-7749.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-7749"
],
"details": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"id": "GSD-2017-7749",
"modified": "2023-12-13T01:21:06.974914Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2017-7749",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "54"
}
]
}
},
{
"product_name": "Firefox ESR",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
},
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use-after-free during docshell reloading"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039",
"refsource": "CONFIRM",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
},
{
"name": "99057",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/99057"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-15/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"name": "DSA-3918",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3918"
},
{
"name": "1038689",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1038689"
},
{
"name": "DSA-3881",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3881"
},
{
"name": "RHSA-2017:1440",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"name": "RHSA-2017:1561",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-17/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-16/",
"refsource": "CONFIRM",
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
}
]
}
},
"mozilla.org": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2017-7749"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
},
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "54"
}
]
}
},
{
"product_name": "Firefox ESR",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "52.2"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.2, Firefox \u003c 54, and Firefox ESR \u003c 52.2."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use-after-free during docshell reloading"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
},
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "54.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "52.2.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "52.2.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2017-7749"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-17/",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-17/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-16/",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-16/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2017-15/",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2017-15/"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Patch",
"Vendor Advisory"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355039"
},
{
"name": "DSA-3918",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-3918"
},
{
"name": "DSA-3881",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-3881"
},
{
"name": "RHSA-2017:1561",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1561"
},
{
"name": "RHSA-2017:1440",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1440"
},
{
"name": "1038689",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1038689"
},
{
"name": "99057",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/99057"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2018-08-03T14:18Z",
"publishedDate": "2018-06-11T21:29Z"
}
}
}
opensuse-su-2017:1579-1
Vulnerability from csaf_opensuse
Published
2017-06-16 09:03
Modified
2017-06-16 09:03
Summary
Security update for Mozilla Thunderbird
Notes
Title of the patch
Security update for Mozilla Thunderbird
Description of the patch
This update to Thunderbird 52.2 fixes security issues and bugs.
The following vulnerabilities were fixed:
* CVE-2017-5472: Use-after-free using destroyed node when regenerating trees
* CVE-2017-7749: Use-after-free during docshell reloading
* CVE-2017-7750: Use-after-free with track elements
* CVE-2017-7751: Use-after-free with content viewer listeners
* CVE-2017-7752: Use-after-free with IME input
* CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object
* CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors
* CVE-2017-7757: Use-after-free in IndexedDB
* CVE-2017-7778, CVE-2017-7778, CVE-2017-7771, CVE-2017-7772,
CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776,
CVE-2017-7777: Vulnerabilities in the Graphite 2 library
* CVE-2017-7758: Out-of-bounds read in Opus encoder
* CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks
* CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2
Mozilla Thunderbird now requires NSS 3.28.5.
The following bugs were fixed:
* Embedded images not shown in email received from Hotmail/Outlook webmailer
* Detection of non-ASCII font names in font selector
* Attachment not forwarded correctly under certain circumstances
* Multiple requests for master password when GMail OAuth2 is enabled
* Large number of blank pages being printed under certain circumstances when invalid preferences were present
* Messages sent via the Simple MAPI interface are forced to HTML
* Calendar: Invitations can't be printed
* Mailing list (group) not accessible from macOS or Outlook address book
* Clicking on links with references/anchors where target doesn't exist in the message not opening in external browser
Patchnames
openSUSE-2017-694
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for Mozilla Thunderbird",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update to Thunderbird 52.2 fixes security issues and bugs.\n\nThe following vulnerabilities were fixed:\n \n* CVE-2017-5472: Use-after-free using destroyed node when regenerating trees\n* CVE-2017-7749: Use-after-free during docshell reloading\n* CVE-2017-7750: Use-after-free with track elements\n* CVE-2017-7751: Use-after-free with content viewer listeners\n* CVE-2017-7752: Use-after-free with IME input\n* CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object\n* CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors\n* CVE-2017-7757: Use-after-free in IndexedDB\n* CVE-2017-7778, CVE-2017-7778, CVE-2017-7771, CVE-2017-7772,\n CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776,\n CVE-2017-7777: Vulnerabilities in the Graphite 2 library\n* CVE-2017-7758: Out-of-bounds read in Opus encoder\n* CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks\n* CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2\n\nMozilla Thunderbird now requires NSS 3.28.5.\n\nThe following bugs were fixed:\n\n* Embedded images not shown in email received from Hotmail/Outlook webmailer\n* Detection of non-ASCII font names in font selector\n* Attachment not forwarded correctly under certain circumstances\n* Multiple requests for master password when GMail OAuth2 is enabled\n* Large number of blank pages being printed under certain circumstances when invalid preferences were present\n* Messages sent via the Simple MAPI interface are forced to HTML\n* Calendar: Invitations can\u0027t be printed\n* Mailing list (group) not accessible from macOS or Outlook address book\n* Clicking on links with references/anchors where target doesn\u0027t exist in the message not opening in external browser\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2017-694",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2017_1579-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1040105",
"url": "https://bugzilla.suse.com/1040105"
},
{
"category": "self",
"summary": "SUSE Bug 1042090",
"url": "https://bugzilla.suse.com/1042090"
},
{
"category": "self",
"summary": "SUSE Bug 1043960",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "self",
"summary": "SUSE Bug 1273265",
"url": "https://bugzilla.suse.com/1273265"
},
{
"category": "self",
"summary": "SUSE Bug 1355039",
"url": "https://bugzilla.suse.com/1355039"
},
{
"category": "self",
"summary": "SUSE Bug 1356558",
"url": "https://bugzilla.suse.com/1356558"
},
{
"category": "self",
"summary": "SUSE Bug 1356824",
"url": "https://bugzilla.suse.com/1356824"
},
{
"category": "self",
"summary": "SUSE Bug 1357090",
"url": "https://bugzilla.suse.com/1357090"
},
{
"category": "self",
"summary": "SUSE Bug 1359547",
"url": "https://bugzilla.suse.com/1359547"
},
{
"category": "self",
"summary": "SUSE Bug 1360309",
"url": "https://bugzilla.suse.com/1360309"
},
{
"category": "self",
"summary": "SUSE Bug 1363396",
"url": "https://bugzilla.suse.com/1363396"
},
{
"category": "self",
"summary": "SUSE Bug 1364283",
"url": "https://bugzilla.suse.com/1364283"
},
{
"category": "self",
"summary": "SUSE Bug 1365602",
"url": "https://bugzilla.suse.com/1365602"
},
{
"category": "self",
"summary": "SUSE Bug 1366595",
"url": "https://bugzilla.suse.com/1366595"
},
{
"category": "self",
"summary": "SUSE Bug 1368490",
"url": "https://bugzilla.suse.com/1368490"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5472 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7749 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7750 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7751 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7752 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7754 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7756 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7757 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7758 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7763 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7764 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7765 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7771 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7772 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7773 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7775 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7776 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7777 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7778 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7778/"
}
],
"title": "Security update for Mozilla Thunderbird",
"tracking": {
"current_release_date": "2017-06-16T09:03:31Z",
"generator": {
"date": "2017-06-16T09:03:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2017:1579-1",
"initial_release_date": "2017-06-16T09:03:31Z",
"revision_history": [
{
"date": "2017-06-16T09:03:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-52.2-36.1.x86_64",
"product": {
"name": "MozillaThunderbird-52.2-36.1.x86_64",
"product_id": "MozillaThunderbird-52.2-36.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"product": {
"name": "MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"product_id": "MozillaThunderbird-buildsymbols-52.2-36.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-devel-52.2-36.1.x86_64",
"product": {
"name": "MozillaThunderbird-devel-52.2-36.1.x86_64",
"product_id": "MozillaThunderbird-devel-52.2-36.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"product_id": "MozillaThunderbird-translations-common-52.2-36.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-52.2-36.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-other-52.2-36.1.x86_64",
"product_id": "MozillaThunderbird-translations-other-52.2-36.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Package Hub 12",
"product": {
"name": "SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-52.2-36.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64"
},
"product_reference": "MozillaThunderbird-52.2-36.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-buildsymbols-52.2-36.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64"
},
"product_reference": "MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-devel-52.2-36.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64"
},
"product_reference": "MozillaThunderbird-devel-52.2-36.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-52.2-36.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-52.2-36.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-52.2-36.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-5470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5470"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5470",
"url": "https://www.suse.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-5470"
},
{
"cve": "CVE-2017-5472",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5472"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5472",
"url": "https://www.suse.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-5472"
},
{
"cve": "CVE-2017-7749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7749"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7749",
"url": "https://www.suse.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7749"
},
{
"cve": "CVE-2017-7750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7750"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7750",
"url": "https://www.suse.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7750"
},
{
"cve": "CVE-2017-7751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7751"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7751",
"url": "https://www.suse.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7751"
},
{
"cve": "CVE-2017-7752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7752"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7752",
"url": "https://www.suse.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7752"
},
{
"cve": "CVE-2017-7754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7754"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7754",
"url": "https://www.suse.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7754"
},
{
"cve": "CVE-2017-7756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7756"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7756",
"url": "https://www.suse.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7756"
},
{
"cve": "CVE-2017-7757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7757"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7757",
"url": "https://www.suse.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7757"
},
{
"cve": "CVE-2017-7758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7758"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7758",
"url": "https://www.suse.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7758"
},
{
"cve": "CVE-2017-7763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7763"
}
],
"notes": [
{
"category": "general",
"text": "Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7763",
"url": "https://www.suse.com/security/cve/CVE-2017-7763"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7763"
},
{
"cve": "CVE-2017-7764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7764"
}
],
"notes": [
{
"category": "general",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7764",
"url": "https://www.suse.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7764"
},
{
"cve": "CVE-2017-7765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7765"
}
],
"notes": [
{
"category": "general",
"text": "The \"Mark of the Web\" was not correctly saved on Windows when files with very long names were downloaded from the Internet. Without the Mark of the Web data, the security warning that Windows displays before running executables downloaded from the Internet is not shown. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7765",
"url": "https://www.suse.com/security/cve/CVE-2017-7765"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7765"
},
{
"cve": "CVE-2017-7771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7771"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Pass::readPass function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7771",
"url": "https://www.suse.com/security/cve/CVE-2017-7771"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7771",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7771",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7771",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7771",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7771",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7771"
},
{
"cve": "CVE-2017-7772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7772"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7772",
"url": "https://www.suse.com/security/cve/CVE-2017-7772"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7772",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7772",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7772",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7772",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7772",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7772"
},
{
"cve": "CVE-2017-7773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7773"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow write in Graphite2 library in Firefox before 54 in lz4::decompress src/Decompressor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7773",
"url": "https://www.suse.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7773"
},
{
"cve": "CVE-2017-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7774"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Silf::readGraphite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7774",
"url": "https://www.suse.com/security/cve/CVE-2017-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7774",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7774",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7774",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7774",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7774",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7774"
},
{
"cve": "CVE-2017-7775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7775"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7775",
"url": "https://www.suse.com/security/cve/CVE-2017-7775"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7775",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7775",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7775",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7775",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7775",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7775"
},
{
"cve": "CVE-2017-7776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7776"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7776",
"url": "https://www.suse.com/security/cve/CVE-2017-7776"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7776",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7776",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7776",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7776",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7776",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7776"
},
{
"cve": "CVE-2017-7777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7777"
}
],
"notes": [
{
"category": "general",
"text": "Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::read_glyph function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7777",
"url": "https://www.suse.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7777"
},
{
"cve": "CVE-2017-7778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7778"
}
],
"notes": [
{
"category": "general",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7778",
"url": "https://www.suse.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:MozillaThunderbird-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-buildsymbols-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-devel-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-common-52.2-36.1.x86_64",
"SUSE Package Hub 12:MozillaThunderbird-translations-other-52.2-36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-16T09:03:31Z",
"details": "important"
}
],
"title": "CVE-2017-7778"
}
]
}
opensuse-su-2024:10601-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
MozillaThunderbird-91.1.1-1.1 on GA media
Notes
Title of the patch
MozillaThunderbird-91.1.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the MozillaThunderbird-91.1.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10601
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "MozillaThunderbird-91.1.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the MozillaThunderbird-91.1.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10601",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10601-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3089 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3285 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3656 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3670 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3734 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3735 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3736 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3737 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-3738 page",
"url": "https://www.suse.com/security/cve/CVE-2007-3738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-0016 page",
"url": "https://www.suse.com/security/cve/CVE-2008-0016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-1233 page",
"url": "https://www.suse.com/security/cve/CVE-2008-1233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-1236 page",
"url": "https://www.suse.com/security/cve/CVE-2008-1236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-3835 page",
"url": "https://www.suse.com/security/cve/CVE-2008-3835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4058 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4061 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4064 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4065 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4067 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-4070 page",
"url": "https://www.suse.com/security/cve/CVE-2008-4070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5012 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5014 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5016 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5021 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5022 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5024 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5500 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5500/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5503 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5503/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5506 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5507 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5508 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5510 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2008-5511 page",
"url": "https://www.suse.com/security/cve/CVE-2008-5511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5824 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9893 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9895 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9897 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9898 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9899 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9900 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9904 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9905 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16541 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5373 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5373/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5375 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5376 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5378 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5380 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5380/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5383 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5383/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5390 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5390/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5396 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5396/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5398 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5398/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5399 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5399/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5400 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5400/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5401 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5401/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5402 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5402/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5403 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5403/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5404 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5404/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5405 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5406 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5406/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5407 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5407/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5408 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5408/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5410 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5412 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5412/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5413 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5413/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5414 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5414/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5416 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5416/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5418 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5418/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5419 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5419/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5421 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5421/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5422 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5426 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5426/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5429 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5429/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5430 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5430/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5432 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5432/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5433 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5434 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5435 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5435/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5436 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5436/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5437 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5437/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5438 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5438/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5439 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5439/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5440 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5440/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5441 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5441/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5442 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5442/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5443 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5443/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5444 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5444/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5445 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5445/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5446 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5446/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5447 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5447/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5449 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5451 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5451/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5454 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5454/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5459 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5459/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5460 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5460/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5461 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5461/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5462 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5462/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5464 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5464/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5465 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5465/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5466 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5466/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5467 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5467/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5469 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5469/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5470/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5472 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7749 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7750 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7751 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7752 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7753 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7754 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7756 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7757 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7758 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7763 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7764 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7765 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7773 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7777 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7778 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7779 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7782 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7784 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7785 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7786 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7787 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7791 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7792 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7793 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7798 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7800 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7801 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7802 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7803 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7804 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7805 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7807 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7810 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7814 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7818 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7819 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7823 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7824 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7825 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7826 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7828 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7829 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7830 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7845 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7846 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7847 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7848 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12359 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12360 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12361 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12362 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12363 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12364 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12364/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12365 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12366 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12367 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12371 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12371/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12372 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12373 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12373/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12374 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12376 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12377 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12377/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12378 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12383 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12383/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12385 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12385/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12389 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12389/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12390 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12390/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12391 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12391/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12392 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12392/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12393 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12393/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12405 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17466 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17466/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18335 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18356 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18492 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18493 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18494 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18498 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18498/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18500 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18500/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18501 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18501/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18505 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18509 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18511 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5089 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5095 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5096 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5097 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5098 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5099 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5102 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5103 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5104 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5117 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5125 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5127 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5129 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5144 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5145 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5146 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5150 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5154 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5155 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5156 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5159 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5161 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5162 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5168 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5170 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5174 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5178 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5183 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5184 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5185 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5187 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5188 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11691 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11692 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11693 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11694 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11698 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11703 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11704 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11705 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11706 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11707 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11708 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11709 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11711 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11712 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11713 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11715 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11717 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11719 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11729 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11730 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11739 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11740 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11742 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11743 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11744 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11746 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11752 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11755 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11757 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11758 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11759 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11760 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11761 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11762 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11763 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11764 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13722 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15903 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17005 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17008 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17010 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17011 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17012 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17015 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17016 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17017 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17021 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17022 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17024 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17026 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-20503 page",
"url": "https://www.suse.com/security/cve/CVE-2019-20503/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5785 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5798 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-7317 page",
"url": "https://www.suse.com/security/cve/CVE-2019-7317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9797 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9800 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9810 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9811 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9813 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9815 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9816 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9817 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9818 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9819 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9820 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12387 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12387/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12392 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12392/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12393 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12393/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12395 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12395/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12397 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12398 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12398/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12405 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12406 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12406/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12410 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12417 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12417/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12418 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12418/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12419 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12419/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12420 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12420/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12421 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12421/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15652 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15659 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15663 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15664 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15669 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15673 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15676 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15677 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15678 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15683 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15685 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15969 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15999 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-16012 page",
"url": "https://www.suse.com/security/cve/CVE-2020-16012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-16042 page",
"url": "https://www.suse.com/security/cve/CVE-2020-16042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-16044 page",
"url": "https://www.suse.com/security/cve/CVE-2020-16044/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26950 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26951 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26953 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26956 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26959 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26960 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26961 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26965 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26966 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26968 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26970 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26971 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26973 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26974 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26976 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26978 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-35111 page",
"url": "https://www.suse.com/security/cve/CVE-2020-35111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-35112 page",
"url": "https://www.suse.com/security/cve/CVE-2020-35112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-35113 page",
"url": "https://www.suse.com/security/cve/CVE-2020-35113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6463 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6463/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6514 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6514/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6792 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6793 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6794 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6795 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6797 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6798 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6800 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6805 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6806 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6807 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6811 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6812 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6814 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6819 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6820 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6821 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6822 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6825 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6831 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23953 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23954 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23960 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23961 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23964 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23968 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23969 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23973 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23978 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23982 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23984 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23987 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23991 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23993 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23994 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23995 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23998 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23999 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-24002 page",
"url": "https://www.suse.com/security/cve/CVE-2021-24002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29945 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29946 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29948 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29956 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29957 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29964 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29967 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29969 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29970 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29976 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29980 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29984 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29985 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29986 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29988 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29989 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29991 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30547 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38492 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38495 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38495/"
}
],
"title": "MozillaThunderbird-91.1.1-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10601-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-91.1.1-1.1.aarch64",
"product": {
"name": "MozillaThunderbird-91.1.1-1.1.aarch64",
"product_id": "MozillaThunderbird-91.1.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"product": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"product_id": "MozillaThunderbird-translations-common-91.1.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"product": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"product_id": "MozillaThunderbird-translations-other-91.1.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-91.1.1-1.1.ppc64le",
"product": {
"name": "MozillaThunderbird-91.1.1-1.1.ppc64le",
"product_id": "MozillaThunderbird-91.1.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"product": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"product_id": "MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"product": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"product_id": "MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-91.1.1-1.1.s390x",
"product": {
"name": "MozillaThunderbird-91.1.1-1.1.s390x",
"product_id": "MozillaThunderbird-91.1.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"product": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"product_id": "MozillaThunderbird-translations-common-91.1.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"product": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"product_id": "MozillaThunderbird-translations-other-91.1.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-91.1.1-1.1.x86_64",
"product": {
"name": "MozillaThunderbird-91.1.1-1.1.x86_64",
"product_id": "MozillaThunderbird-91.1.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"product_id": "MozillaThunderbird-translations-common-91.1.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.x86_64",
"product_id": "MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-91.1.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64"
},
"product_reference": "MozillaThunderbird-91.1.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-91.1.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le"
},
"product_reference": "MozillaThunderbird-91.1.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-91.1.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x"
},
"product_reference": "MozillaThunderbird-91.1.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-91.1.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64"
},
"product_reference": "MozillaThunderbird-91.1.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-91.1.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-91.1.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-91.1.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-3089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3089"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystroke values from window.event, aka the \"promiscuous IFRAME access bug,\" a related issue to CVE-2006-4568.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3089",
"url": "https://www.suse.com/security/cve/CVE-2007-3089"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3089",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2007-3089"
},
{
"cve": "CVE-2007-3285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3285"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote attackers to bypass file type checks and possibly execute programs via a (1) file:/// or (2) resource: URI with a dangerous extension, followed by a NULL byte (%00) and a safer extension, which causes Firefox to treat the requested file differently than Windows would.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3285",
"url": "https://www.suse.com/security/cve/CVE-2007-3285"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3285",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2007-3285"
},
{
"cve": "CVE-2007-3656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3656"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform a security zone check when processing a wyciwyg URI, which allows remote attackers to obtain sensitive information, poison the browser cache, and possibly enable further attack vectors via (1) HTTP 302 redirect controls, (2) XMLHttpRequest, or (3) view-source URIs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3656",
"url": "https://www.suse.com/security/cve/CVE-2007-3656"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3656",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-3656"
},
{
"cve": "CVE-2007-3670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3670"
}
],
"notes": [
{
"category": "general",
"text": "Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a (1) FirefoxURL or (2) FirefoxHTML URI, which are inserted into the command line that is created when invoking firefox.exe. NOTE: it has been debated as to whether the issue is in Internet Explorer or Firefox. As of 20070711, it is CVE\u0027s opinion that IE appears to be failing to properly delimit the URL argument when invoking Firefox, and this issue could arise with other protocol handlers in IE as well. However, Mozilla has stated that it will address the issue with a \"defense in depth\" fix that will \"prevent IE from sending Firefox malicious data.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3670",
"url": "https://www.suse.com/security/cve/CVE-2007-3670"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3670",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-3670"
},
{
"cve": "CVE-2007-3734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3734"
}
],
"notes": [
{
"category": "general",
"text": "Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3734",
"url": "https://www.suse.com/security/cve/CVE-2007-3734"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3734",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2007-3734"
},
{
"cve": "CVE-2007-3735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3735"
}
],
"notes": [
{
"category": "general",
"text": "Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3735",
"url": "https://www.suse.com/security/cve/CVE-2007-3735"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3735",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2007-3735"
},
{
"cve": "CVE-2007-3736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3736"
}
],
"notes": [
{
"category": "general",
"text": "Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script \"into another site\u0027s context\" via a \"timing issue\" involving the (1) addEventListener or (2) setTimeout function, probably by setting events that activate after the context has changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3736",
"url": "https://www.suse.com/security/cve/CVE-2007-3736"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3736",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-3736"
},
{
"cve": "CVE-2007-3737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3737"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified \"element outside of a document.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3737",
"url": "https://www.suse.com/security/cve/CVE-2007-3737"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3737",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2007-3737"
},
{
"cve": "CVE-2007-3738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-3738"
}
],
"notes": [
{
"category": "general",
"text": "Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-3738",
"url": "https://www.suse.com/security/cve/CVE-2007-3738"
},
{
"category": "external",
"summary": "SUSE Bug 288115 for CVE-2007-3738",
"url": "https://bugzilla.suse.com/288115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2007-3738"
},
{
"cve": "CVE-2008-0016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-0016"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in the URL parsing implementation in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to execute arbitrary code via a crafted UTF-8 URL in a link.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-0016",
"url": "https://www.suse.com/security/cve/CVE-2008-0016"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-0016",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-0016"
},
{
"cve": "CVE-2008-1233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-1233"
}
],
"notes": [
{
"category": "general",
"text": "Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allows remote attackers to execute arbitrary code via \"XPCNativeWrapper pollution.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-1233",
"url": "https://www.suse.com/security/cve/CVE-2008-1233"
},
{
"category": "external",
"summary": "SUSE Bug 370353 for CVE-2008-1233",
"url": "https://bugzilla.suse.com/370353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-1233"
},
{
"cve": "CVE-2008-1236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-1236"
}
],
"notes": [
{
"category": "general",
"text": "Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to the layout engine.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-1236",
"url": "https://www.suse.com/security/cve/CVE-2008-1236"
},
{
"category": "external",
"summary": "SUSE Bug 370353 for CVE-2008-1236",
"url": "https://bugzilla.suse.com/370353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-1236"
},
{
"cve": "CVE-2008-3835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-3835"
}
],
"notes": [
{
"category": "general",
"text": "The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox before 2.0.0.17, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-3835",
"url": "https://www.suse.com/security/cve/CVE-2008-3835"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-3835",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2008-3835"
},
{
"cve": "CVE-2008-4058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4058"
}
],
"notes": [
{
"category": "general",
"text": "The XPConnect component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to \"pollute XPCNativeWrappers\" and execute arbitrary code with chrome privileges via vectors related to (1) chrome XBL and (2) chrome JS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4058",
"url": "https://www.suse.com/security/cve/CVE-2008-4058"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4058",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2008-4058"
},
{
"cve": "CVE-2008-4061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4061"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the MathML component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via an mtd element with a large integer value in the rowspan attribute, related to the layout engine.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4061",
"url": "https://www.suse.com/security/cve/CVE-2008-4061"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4061",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-4061"
},
{
"cve": "CVE-2008-4064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4064"
}
],
"notes": [
{
"category": "general",
"text": "Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to graphics rendering and (1) handling of a long alert messagebox in the cairo_surface_set_device_offset function, (2) integer overflows when handling animated PNG data in the info_callback function in nsPNGDecoder.cpp, and (3) an integer overflow when handling SVG data in the nsSVGFEGaussianBlurElement::SetupPredivide function in nsSVGFilters.cpp.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4064",
"url": "https://www.suse.com/security/cve/CVE-2008-4064"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4064",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-4064"
},
{
"cve": "CVE-2008-4065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4065"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via byte order mark (BOM) characters that are removed from JavaScript code before execution, aka \"Stripped BOM characters bug.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4065",
"url": "https://www.suse.com/security/cve/CVE-2008-4065"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4065",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-4065"
},
{
"cve": "CVE-2008-4067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4067"
}
],
"notes": [
{
"category": "general",
"text": "Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 on Linux allows remote attackers to read arbitrary files via a .. (dot dot) and URL-encoded / (slash) characters in a resource: URI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4067",
"url": "https://www.suse.com/security/cve/CVE-2008-4067"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4067",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-4067"
},
{
"cve": "CVE-2008-4070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-4070"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long header in a news article, related to \"canceling [a] newsgroup message\" and \"cancelled newsgroup messages.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-4070",
"url": "https://www.suse.com/security/cve/CVE-2008-4070"
},
{
"category": "external",
"summary": "SUSE Bug 429179 for CVE-2008-4070",
"url": "https://bugzilla.suse.com/429179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-4070"
},
{
"cve": "CVE-2008-5012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5012"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are not directly accessible to the attacker. NOTE: this issue can be leveraged to enumerate software on the client by performing redirections related to moz-icon.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5012",
"url": "https://www.suse.com/security/cve/CVE-2008-5012"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5012",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-5012"
},
{
"cve": "CVE-2008-5014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5014"
}
],
"notes": [
{
"category": "general",
"text": "jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5014",
"url": "https://www.suse.com/security/cve/CVE-2008-5014"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5014",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5014"
},
{
"cve": "CVE-2008-5016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5016"
}
],
"notes": [
{
"category": "general",
"text": "The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5016",
"url": "https://www.suse.com/security/cve/CVE-2008-5016"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5016",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2008-5016"
},
{
"cve": "CVE-2008-5021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5021"
}
],
"notes": [
{
"category": "general",
"text": "nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5021",
"url": "https://www.suse.com/security/cve/CVE-2008-5021"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5021",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5021"
},
{
"cve": "CVE-2008-5022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5022"
}
],
"notes": [
{
"category": "general",
"text": "The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5022",
"url": "https://www.suse.com/security/cve/CVE-2008-5022"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5022",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2008-5022"
},
{
"cve": "CVE-2008-5024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5024"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, which allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5024",
"url": "https://www.suse.com/security/cve/CVE-2008-5024"
},
{
"category": "external",
"summary": "SUSE Bug 439841 for CVE-2008-5024",
"url": "https://bugzilla.suse.com/439841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2008-5024"
},
{
"cve": "CVE-2008-5500",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5500"
}
],
"notes": [
{
"category": "general",
"text": "The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via vectors related to (1) a reachable assertion or (2) an integer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5500",
"url": "https://www.suse.com/security/cve/CVE-2008-5500"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5500",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5500"
},
{
"cve": "CVE-2008-5503",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5503"
}
],
"notes": [
{
"category": "general",
"text": "The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not perform any security checks related to the same-domain policy, which allows remote attackers to read or access data from other domains via crafted XBL bindings.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5503",
"url": "https://www.suse.com/security/cve/CVE-2008-5503"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5503",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5503"
},
{
"cve": "CVE-2008-5506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5506"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy by causing the browser to issue an XMLHttpRequest to an attacker-controlled resource that uses a 302 redirect to a resource in a different domain, then reading content from the response, aka \"response disclosure.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5506",
"url": "https://www.suse.com/security/cve/CVE-2008-5506"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5506",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5506"
},
{
"cve": "CVE-2008-5507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5507"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allow remote attackers to bypass the same origin policy and access portions of data from another domain via a JavaScript URL that redirects to the target resource, which generates an error if the target data does not have JavaScript syntax, which can be accessed using the window.onerror DOM API.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5507",
"url": "https://www.suse.com/security/cve/CVE-2008-5507"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5507",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5507"
},
{
"cve": "CVE-2008-5508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5508"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote attackers to misrepresent URLs and simplify phishing attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5508",
"url": "https://www.suse.com/security/cve/CVE-2008-5508"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5508",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5508"
},
{
"cve": "CVE-2008-5510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5510"
}
],
"notes": [
{
"category": "general",
"text": "The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 ignores the \u0027\\0\u0027 escaped null character, which might allow remote attackers to bypass protection mechanisms such as sanitization routines.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5510",
"url": "https://www.suse.com/security/cve/CVE-2008-5510"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5510",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5510"
},
{
"cve": "CVE-2008-5511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2008-5511"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy and conduct cross-site scripting (XSS) attacks via an XBL binding to an \"unloaded document.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2008-5511",
"url": "https://www.suse.com/security/cve/CVE-2008-5511"
},
{
"category": "external",
"summary": "SUSE Bug 455804 for CVE-2008-5511",
"url": "https://bugzilla.suse.com/455804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2008-5511"
},
{
"cve": "CVE-2016-5824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5824"
}
],
"notes": [
{
"category": "general",
"text": "libical 1.0 allows remote attackers to cause a denial of service (use-after-free) via a crafted ics file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5824",
"url": "https://www.suse.com/security/cve/CVE-2016-5824"
},
{
"category": "external",
"summary": "SUSE Bug 1015964 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/1015964"
},
{
"category": "external",
"summary": "SUSE Bug 1122983 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/1122983"
},
{
"category": "external",
"summary": "SUSE Bug 986631 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/986631"
},
{
"category": "external",
"summary": "SUSE Bug 986639 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/986639"
},
{
"category": "external",
"summary": "SUSE Bug 986642 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/986642"
},
{
"category": "external",
"summary": "SUSE Bug 986658 for CVE-2016-5824",
"url": "https://bugzilla.suse.com/986658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5824"
},
{
"cve": "CVE-2016-9893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9893"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Thunderbird 45.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9893",
"url": "https://www.suse.com/security/cve/CVE-2016-9893"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9893",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9893"
},
{
"cve": "CVE-2016-9895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9895"
}
],
"notes": [
{
"category": "general",
"text": "Event handlers on \"marquee\" elements were executed despite a strict Content Security Policy (CSP) that disallowed inline JavaScript. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9895",
"url": "https://www.suse.com/security/cve/CVE-2016-9895"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9895",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9895"
},
{
"cve": "CVE-2016-9897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9897"
}
],
"notes": [
{
"category": "general",
"text": "Memory corruption resulting in a potentially exploitable crash during WebGL functions using a vector constructor with a varying array within libGLES. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9897",
"url": "https://www.suse.com/security/cve/CVE-2016-9897"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9897",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9897"
},
{
"cve": "CVE-2016-9898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9898"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9898",
"url": "https://www.suse.com/security/cve/CVE-2016-9898"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9898",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9898"
},
{
"cve": "CVE-2016-9899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9899"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free while manipulating DOM events and removing audio elements due to errors in the handling of node adoption. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9899",
"url": "https://www.suse.com/security/cve/CVE-2016-9899"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9899",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9899"
},
{
"cve": "CVE-2016-9900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9900"
}
],
"notes": [
{
"category": "general",
"text": "External resources that should be blocked when loaded by SVG images can bypass security restrictions through the use of \"data:\" URLs. This could allow for cross-domain data leakage. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9900",
"url": "https://www.suse.com/security/cve/CVE-2016-9900"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9900",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9900"
},
{
"cve": "CVE-2016-9904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9904"
}
],
"notes": [
{
"category": "general",
"text": "An attacker could use a JavaScript Map/Set timing attack to determine whether an atom is used by another compartment/zone in specific contexts. This could be used to leak information, such as usernames embedded in JavaScript code, across websites. This vulnerability affects Firefox \u003c 50.1, Firefox ESR \u003c 45.6, and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9904",
"url": "https://www.suse.com/security/cve/CVE-2016-9904"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9904",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9904"
},
{
"cve": "CVE-2016-9905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9905"
}
],
"notes": [
{
"category": "general",
"text": "A potentially exploitable crash in \"EnumerateSubDocuments\" while adding or removing sub-documents. This vulnerability affects Firefox ESR \u003c 45.6 and Thunderbird \u003c 45.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9905",
"url": "https://www.suse.com/security/cve/CVE-2016-9905"
},
{
"category": "external",
"summary": "SUSE Bug 1015422 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015422"
},
{
"category": "external",
"summary": "SUSE Bug 1015527 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015527"
},
{
"category": "external",
"summary": "SUSE Bug 1015528 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015528"
},
{
"category": "external",
"summary": "SUSE Bug 1015529 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015529"
},
{
"category": "external",
"summary": "SUSE Bug 1015530 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015530"
},
{
"category": "external",
"summary": "SUSE Bug 1015531 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015531"
},
{
"category": "external",
"summary": "SUSE Bug 1015533 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015533"
},
{
"category": "external",
"summary": "SUSE Bug 1015534 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015534"
},
{
"category": "external",
"summary": "SUSE Bug 1015535 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015535"
},
{
"category": "external",
"summary": "SUSE Bug 1015536 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015536"
},
{
"category": "external",
"summary": "SUSE Bug 1015537 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015537"
},
{
"category": "external",
"summary": "SUSE Bug 1015538 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015538"
},
{
"category": "external",
"summary": "SUSE Bug 1015540 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015540"
},
{
"category": "external",
"summary": "SUSE Bug 1015541 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015541"
},
{
"category": "external",
"summary": "SUSE Bug 1015542 for CVE-2016-9905",
"url": "https://bugzilla.suse.com/1015542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9905"
},
{
"cve": "CVE-2017-16541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16541"
}
],
"notes": [
{
"category": "general",
"text": "Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended anonymity feature and discover a client IP address via vectors involving a crafted web site that leverages file:// mishandling in Firefox, aka TorMoil. NOTE: Tails is unaffected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16541",
"url": "https://www.suse.com/security/cve/CVE-2017-16541"
},
{
"category": "external",
"summary": "SUSE Bug 1066489 for CVE-2017-16541",
"url": "https://bugzilla.suse.com/1066489"
},
{
"category": "external",
"summary": "SUSE Bug 1107343 for CVE-2017-16541",
"url": "https://bugzilla.suse.com/1107343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-16541"
},
{
"cve": "CVE-2017-5373",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5373"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 50.1 and Firefox ESR 45.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5373",
"url": "https://www.suse.com/security/cve/CVE-2017-5373"
},
{
"category": "external",
"summary": "SUSE Bug 1021824 for CVE-2017-5373",
"url": "https://bugzilla.suse.com/1021824"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5373",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5373"
},
{
"cve": "CVE-2017-5375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5375"
}
],
"notes": [
{
"category": "general",
"text": "JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5375",
"url": "https://www.suse.com/security/cve/CVE-2017-5375"
},
{
"category": "external",
"summary": "SUSE Bug 1021814 for CVE-2017-5375",
"url": "https://bugzilla.suse.com/1021814"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5375",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5375"
},
{
"cve": "CVE-2017-5376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5376"
}
],
"notes": [
{
"category": "general",
"text": "Use-after-free while manipulating XSL in XSLT documents. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5376",
"url": "https://www.suse.com/security/cve/CVE-2017-5376"
},
{
"category": "external",
"summary": "SUSE Bug 1021817 for CVE-2017-5376",
"url": "https://bugzilla.suse.com/1021817"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5376",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5376"
},
{
"cve": "CVE-2017-5378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5378"
}
],
"notes": [
{
"category": "general",
"text": "Hashed codes of JavaScript objects are shared between pages. This allows for pointer leaks because an object\u0027s address can be discovered through hash codes, and also allows for data leakage of an object\u0027s content using these hash codes. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5378",
"url": "https://www.suse.com/security/cve/CVE-2017-5378"
},
{
"category": "external",
"summary": "SUSE Bug 1021818 for CVE-2017-5378",
"url": "https://bugzilla.suse.com/1021818"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5378",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5378"
},
{
"cve": "CVE-2017-5380",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5380"
}
],
"notes": [
{
"category": "general",
"text": "A potential use-after-free found through fuzzing during DOM manipulation of SVG content. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5380",
"url": "https://www.suse.com/security/cve/CVE-2017-5380"
},
{
"category": "external",
"summary": "SUSE Bug 1021819 for CVE-2017-5380",
"url": "https://bugzilla.suse.com/1021819"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5380",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5380"
},
{
"cve": "CVE-2017-5383",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5383"
}
],
"notes": [
{
"category": "general",
"text": "URLs containing certain unicode glyphs for alternative hyphens and quotes do not properly trigger punycode display, allowing for domain name spoofing attacks in the location bar. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5383",
"url": "https://www.suse.com/security/cve/CVE-2017-5383"
},
{
"category": "external",
"summary": "SUSE Bug 1021822 for CVE-2017-5383",
"url": "https://bugzilla.suse.com/1021822"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5383",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5383"
},
{
"cve": "CVE-2017-5390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5390"
}
],
"notes": [
{
"category": "general",
"text": "The JSON viewer in the Developer Tools uses insecure methods to create a communication channel for copying and viewing JSON or HTTP headers data, allowing for potential privilege escalation. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5390",
"url": "https://www.suse.com/security/cve/CVE-2017-5390"
},
{
"category": "external",
"summary": "SUSE Bug 1021820 for CVE-2017-5390",
"url": "https://bugzilla.suse.com/1021820"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5390",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5390"
},
{
"cve": "CVE-2017-5396",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5396"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired after the media elements are freed from memory. This vulnerability affects Thunderbird \u003c 45.7, Firefox ESR \u003c 45.7, and Firefox \u003c 51.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5396",
"url": "https://www.suse.com/security/cve/CVE-2017-5396"
},
{
"category": "external",
"summary": "SUSE Bug 1021821 for CVE-2017-5396",
"url": "https://bugzilla.suse.com/1021821"
},
{
"category": "external",
"summary": "SUSE Bug 1021991 for CVE-2017-5396",
"url": "https://bugzilla.suse.com/1021991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5396"
},
{
"cve": "CVE-2017-5398",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5398"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Thunderbird 45.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5398",
"url": "https://www.suse.com/security/cve/CVE-2017-5398"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5398",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5398",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5398"
},
{
"cve": "CVE-2017-5399",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5399"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 51. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5399",
"url": "https://www.suse.com/security/cve/CVE-2017-5399"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5399",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5399",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5399"
},
{
"cve": "CVE-2017-5400",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5400"
}
],
"notes": [
{
"category": "general",
"text": "JIT-spray targeting asm.js combined with a heap spray allows for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5400",
"url": "https://www.suse.com/security/cve/CVE-2017-5400"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5400",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5400",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5400"
},
{
"cve": "CVE-2017-5401",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5401"
}
],
"notes": [
{
"category": "general",
"text": "A crash triggerable by web content in which an \"ErrorResult\" references unassigned memory due to a logic error. The resulting crash may be exploitable. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5401",
"url": "https://www.suse.com/security/cve/CVE-2017-5401"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5401",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5401",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5401"
},
{
"cve": "CVE-2017-5402",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5402"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free can occur when events are fired for a \"FontFace\" object after the object has been already been destroyed while working with fonts. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5402",
"url": "https://www.suse.com/security/cve/CVE-2017-5402"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5402",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5402",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5402"
},
{
"cve": "CVE-2017-5403",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5403"
}
],
"notes": [
{
"category": "general",
"text": "When adding a range to an object in the DOM, it is possible to use \"addRange\" to add the range to an incorrect root object. This triggers a use-after-free, resulting in a potentially exploitable crash. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5403",
"url": "https://www.suse.com/security/cve/CVE-2017-5403"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5403",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5403",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5403"
},
{
"cve": "CVE-2017-5404",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5404"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5404",
"url": "https://www.suse.com/security/cve/CVE-2017-5404"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5404",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5404",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5404"
},
{
"cve": "CVE-2017-5405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5405"
}
],
"notes": [
{
"category": "general",
"text": "Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5405",
"url": "https://www.suse.com/security/cve/CVE-2017-5405"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5405",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5405",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5405"
},
{
"cve": "CVE-2017-5406",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5406"
}
],
"notes": [
{
"category": "general",
"text": "A segmentation fault can occur in the Skia graphics library during some canvas operations due to issues with mask/clip intersection and empty masks. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5406",
"url": "https://www.suse.com/security/cve/CVE-2017-5406"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5406",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5406",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5406"
},
{
"cve": "CVE-2017-5407",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5407"
}
],
"notes": [
{
"category": "general",
"text": "Using SVG filters that don\u0027t use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5407",
"url": "https://www.suse.com/security/cve/CVE-2017-5407"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5407",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5407",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5407"
},
{
"cve": "CVE-2017-5408",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5408"
}
],
"notes": [
{
"category": "general",
"text": "Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5408",
"url": "https://www.suse.com/security/cve/CVE-2017-5408"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5408",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5408",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5408"
},
{
"cve": "CVE-2017-5410",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5410"
}
],
"notes": [
{
"category": "general",
"text": "Memory corruption resulting in a potentially exploitable crash during garbage collection of JavaScript due errors in how incremental sweeping is managed for memory cleanup. This vulnerability affects Firefox \u003c 52, Firefox ESR \u003c 45.8, Thunderbird \u003c 52, and Thunderbird \u003c 45.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5410",
"url": "https://www.suse.com/security/cve/CVE-2017-5410"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5410",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5410",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5410"
},
{
"cve": "CVE-2017-5412",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5412"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow read during SVG filter color value operations, resulting in data exposure. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5412",
"url": "https://www.suse.com/security/cve/CVE-2017-5412"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5412",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5412",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5412"
},
{
"cve": "CVE-2017-5413",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5413"
}
],
"notes": [
{
"category": "general",
"text": "A segmentation fault can occur during some bidirectional layout operations. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5413",
"url": "https://www.suse.com/security/cve/CVE-2017-5413"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5413",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5413",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5413"
},
{
"cve": "CVE-2017-5414",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5414"
}
],
"notes": [
{
"category": "general",
"text": "The file picker dialog can choose and display the wrong local default directory when instantiated. On some operating systems, this can lead to information disclosure, such as the operating system or the local account name. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5414",
"url": "https://www.suse.com/security/cve/CVE-2017-5414"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5414",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5414",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5414"
},
{
"cve": "CVE-2017-5416",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5416"
}
],
"notes": [
{
"category": "general",
"text": "In certain circumstances a networking event listener can be prematurely released. This appears to result in a null dereference in practice. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5416",
"url": "https://www.suse.com/security/cve/CVE-2017-5416"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5416",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5416",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5416"
},
{
"cve": "CVE-2017-5418",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5418"
}
],
"notes": [
{
"category": "general",
"text": "An out of bounds read error occurs when parsing some HTTP digest authorization responses, resulting in information leakage through the reading of random memory containing matches to specifically set patterns. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5418",
"url": "https://www.suse.com/security/cve/CVE-2017-5418"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5418",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5418",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5418"
},
{
"cve": "CVE-2017-5419",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5419"
}
],
"notes": [
{
"category": "general",
"text": "If a malicious site repeatedly triggers a modal authentication prompt, eventually the browser UI will become non-responsive, requiring shutdown through the operating system. This is a denial of service (DOS) attack. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5419",
"url": "https://www.suse.com/security/cve/CVE-2017-5419"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5419",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5419",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5419"
},
{
"cve": "CVE-2017-5421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5421"
}
],
"notes": [
{
"category": "general",
"text": "A malicious site could spoof the contents of the print preview window if popup windows are enabled, resulting in user confusion of what site is currently loaded. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5421",
"url": "https://www.suse.com/security/cve/CVE-2017-5421"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5421",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5421",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5421"
},
{
"cve": "CVE-2017-5422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5422"
}
],
"notes": [
{
"category": "general",
"text": "If a malicious site uses the \"view-source:\" protocol in a series within a single hyperlink, it can trigger a non-exploitable browser crash when the hyperlink is selected. This was fixed by no longer making \"view-source:\" linkable. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5422",
"url": "https://www.suse.com/security/cve/CVE-2017-5422"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5422",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5422",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5422"
},
{
"cve": "CVE-2017-5426",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5426"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the secure computing mode BPF (seccomp-bpf) filter is running when the Gecko Media Plugin sandbox is started, the sandbox fails to be applied and items that would run within the sandbox are run protected only by the running filter which is typically weak compared to the sandbox. Note: this issue only affects Linux. Other operating systems are not affected. This vulnerability affects Firefox \u003c 52 and Thunderbird \u003c 52.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5426",
"url": "https://www.suse.com/security/cve/CVE-2017-5426"
},
{
"category": "external",
"summary": "SUSE Bug 1028391 for CVE-2017-5426",
"url": "https://bugzilla.suse.com/1028391"
},
{
"category": "external",
"summary": "SUSE Bug 1028393 for CVE-2017-5426",
"url": "https://bugzilla.suse.com/1028393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5426"
},
{
"cve": "CVE-2017-5429",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5429"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 52, Firefox ESR 45.8, Firefox ESR 52, and Thunderbird 52. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5429",
"url": "https://www.suse.com/security/cve/CVE-2017-5429"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5429",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5429",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5429"
},
{
"cve": "CVE-2017-5430",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5430"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 52, Firefox ESR 52, and Thunderbird 52. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5430",
"url": "https://www.suse.com/security/cve/CVE-2017-5430"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5430",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5430",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5430"
},
{
"cve": "CVE-2017-5432",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5432"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability occurs during certain text input selection resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5432",
"url": "https://www.suse.com/security/cve/CVE-2017-5432"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5432",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5432",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5432"
},
{
"cve": "CVE-2017-5433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5433"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in SMIL animation functions occurs when pointers to animation elements in an array are dropped from the animation controller while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5433",
"url": "https://www.suse.com/security/cve/CVE-2017-5433"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5433",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5433",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5433"
},
{
"cve": "CVE-2017-5434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5434"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability occurs when redirecting focus handling which results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5434",
"url": "https://www.suse.com/security/cve/CVE-2017-5434"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5434",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5434",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5434"
},
{
"cve": "CVE-2017-5435",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5435"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability occurs during transaction processing in the editor during design mode interactions. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5435",
"url": "https://www.suse.com/security/cve/CVE-2017-5435"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5435",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5435",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5435"
},
{
"cve": "CVE-2017-5436",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5436"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. This results in a potentially exploitable crash. This issue was fixed in the Graphite 2 library as well as Mozilla products. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5436",
"url": "https://www.suse.com/security/cve/CVE-2017-5436"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5436",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035204 for CVE-2017-5436",
"url": "https://bugzilla.suse.com/1035204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5436"
},
{
"cve": "CVE-2017-5437",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5437"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-10195, CVE-2016-10196, CVE-2016-10197. Reason: This candidate is a duplicate of CVE-2016-10195, CVE-2016-10196, and CVE-2016-10197. Notes: All CVE users should reference CVE-2016-10195, CVE-2016-10196, and/or CVE-2016-10197 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5437",
"url": "https://www.suse.com/security/cve/CVE-2017-5437"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5437",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5437",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5437"
},
{
"cve": "CVE-2017-5438",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5438"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during XSLT processing due to the result handler being held by a freed handler during handling. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5438",
"url": "https://www.suse.com/security/cve/CVE-2017-5438"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5438",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5438",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5438"
},
{
"cve": "CVE-2017-5439",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5439"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during XSLT processing due to poor handling of template parameters. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5439",
"url": "https://www.suse.com/security/cve/CVE-2017-5439"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5439",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5439",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5439"
},
{
"cve": "CVE-2017-5440",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5440"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during XSLT processing due to a failure to propagate error conditions during matching while evaluating context, leading to objects being used when they no longer exist. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5440",
"url": "https://www.suse.com/security/cve/CVE-2017-5440"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5440",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5440",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5440"
},
{
"cve": "CVE-2017-5441",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5441"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability when holding a selection during scroll events. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5441",
"url": "https://www.suse.com/security/cve/CVE-2017-5441"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5441",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5441",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5441"
},
{
"cve": "CVE-2017-5442",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5442"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during changes in style when manipulating DOM elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5442",
"url": "https://www.suse.com/security/cve/CVE-2017-5442"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5442",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5442",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5442"
},
{
"cve": "CVE-2017-5443",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5443"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds write vulnerability while decoding improperly formed BinHex format archives. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5443",
"url": "https://www.suse.com/security/cve/CVE-2017-5443"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5443",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5443",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5443"
},
{
"cve": "CVE-2017-5444",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5444"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow vulnerability while parsing \"application/http-index-format\" format content when the header contains improperly formatted data. This allows for an out-of-bounds read of data from memory. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5444",
"url": "https://www.suse.com/security/cve/CVE-2017-5444"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5444",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5444",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5444"
},
{
"cve": "CVE-2017-5445",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5445"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability while parsing \"application/http-index-format\" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5445",
"url": "https://www.suse.com/security/cve/CVE-2017-5445"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5445",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5445",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5445"
},
{
"cve": "CVE-2017-5446",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5446"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read when an HTTP/2 connection to a servers sends \"DATA\" frames with incorrect data content. This leads to a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5446",
"url": "https://www.suse.com/security/cve/CVE-2017-5446"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5446",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5446",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5446"
},
{
"cve": "CVE-2017-5447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5447"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5447",
"url": "https://www.suse.com/security/cve/CVE-2017-5447"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5447",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5447",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5447"
},
{
"cve": "CVE-2017-5449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5449"
}
],
"notes": [
{
"category": "general",
"text": "A possibly exploitable crash triggered during layout and manipulation of bidirectional unicode text in concert with CSS animations. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5449",
"url": "https://www.suse.com/security/cve/CVE-2017-5449"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5449",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5449",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5449"
},
{
"cve": "CVE-2017-5451",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5451"
}
],
"notes": [
{
"category": "general",
"text": "A mechanism to spoof the addressbar through the user interaction on the addressbar and the \"onblur\" event. The event could be used by script to affect text display to make the loaded site appear to be different from the one actually loaded within the addressbar. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5451",
"url": "https://www.suse.com/security/cve/CVE-2017-5451"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5451",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5451",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5451"
},
{
"cve": "CVE-2017-5454",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5454"
}
],
"notes": [
{
"category": "general",
"text": "A mechanism to bypass file system access protections in the sandbox to use the file picker to access different files than those selected in the file picker through the use of relative paths. This allows for read only access to the local file system. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5454",
"url": "https://www.suse.com/security/cve/CVE-2017-5454"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5454",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5454",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-5454"
},
{
"cve": "CVE-2017-5459",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5459"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5459",
"url": "https://www.suse.com/security/cve/CVE-2017-5459"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5459",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5459",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5459"
},
{
"cve": "CVE-2017-5460",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5460"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in frame selection triggered by a combination of malicious script content and key presses by a user. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5460",
"url": "https://www.suse.com/security/cve/CVE-2017-5460"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5460",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5460",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5460"
},
{
"cve": "CVE-2017-5461",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5461"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through 3.28.x before 3.28.4, 3.29.x before 3.29.5, and 3.30.x before 3.30.1 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by leveraging incorrect base64 operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5461",
"url": "https://www.suse.com/security/cve/CVE-2017-5461"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5461",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5461",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5461"
},
{
"cve": "CVE-2017-5462",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5462"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5462",
"url": "https://www.suse.com/security/cve/CVE-2017-5462"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5462",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5462",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5462"
},
{
"cve": "CVE-2017-5464",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5464"
}
],
"notes": [
{
"category": "general",
"text": "During DOM manipulations of the accessibility tree through script, the DOM tree can become out of sync with the accessibility tree, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5464",
"url": "https://www.suse.com/security/cve/CVE-2017-5464"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5464",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5464",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5464"
},
{
"cve": "CVE-2017-5465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5465"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read while processing SVG content in \"ConvolvePixel\". This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could then displayed. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5465",
"url": "https://www.suse.com/security/cve/CVE-2017-5465"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5465",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5465",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5465"
},
{
"cve": "CVE-2017-5466",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5466"
}
],
"notes": [
{
"category": "general",
"text": "If a page is loaded from an original site through a hyperlink and contains a redirect to a \"data:text/html\" URL, triggering a reload will run the reloaded \"data:text/html\" page with its origin set incorrectly. This allows for a cross-site scripting (XSS) attack. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5466",
"url": "https://www.suse.com/security/cve/CVE-2017-5466"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5466",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5466",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5466"
},
{
"cve": "CVE-2017-5467",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5467"
}
],
"notes": [
{
"category": "general",
"text": "A potential memory corruption and crash when using Skia content when drawing content outside of the bounds of a clipping region. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5467",
"url": "https://www.suse.com/security/cve/CVE-2017-5467"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5467",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5467",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5467"
},
{
"cve": "CVE-2017-5469",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5469"
}
],
"notes": [
{
"category": "general",
"text": "Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex. This vulnerability affects Thunderbird \u003c 52.1, Firefox ESR \u003c 45.9, Firefox ESR \u003c 52.1, and Firefox \u003c 53.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5469",
"url": "https://www.suse.com/security/cve/CVE-2017-5469"
},
{
"category": "external",
"summary": "SUSE Bug 1035082 for CVE-2017-5469",
"url": "https://bugzilla.suse.com/1035082"
},
{
"category": "external",
"summary": "SUSE Bug 1035209 for CVE-2017-5469",
"url": "https://bugzilla.suse.com/1035209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-5469"
},
{
"cve": "CVE-2017-5470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5470"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5470",
"url": "https://www.suse.com/security/cve/CVE-2017-5470"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-5470",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5470"
},
{
"cve": "CVE-2017-5472",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5472"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5472",
"url": "https://www.suse.com/security/cve/CVE-2017-5472"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-5472",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5472"
},
{
"cve": "CVE-2017-7749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7749"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7749",
"url": "https://www.suse.com/security/cve/CVE-2017-7749"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7749",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7749"
},
{
"cve": "CVE-2017-7750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7750"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during video control operations when a \"\u003ctrack\u003e\" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7750",
"url": "https://www.suse.com/security/cve/CVE-2017-7750"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7750",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7750"
},
{
"cve": "CVE-2017-7751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7751"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7751",
"url": "https://www.suse.com/security/cve/CVE-2017-7751"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7751",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7751"
},
{
"cve": "CVE-2017-7752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7752"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7752",
"url": "https://www.suse.com/security/cve/CVE-2017-7752"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7752",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7752"
},
{
"cve": "CVE-2017-7753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7753"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7753",
"url": "https://www.suse.com/security/cve/CVE-2017-7753"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7753",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7753"
},
{
"cve": "CVE-2017-7754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7754"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read in WebGL with a maliciously crafted \"ImageInfo\" object during WebGL operations. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7754",
"url": "https://www.suse.com/security/cve/CVE-2017-7754"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7754",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7754"
},
{
"cve": "CVE-2017-7756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7756"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7756",
"url": "https://www.suse.com/security/cve/CVE-2017-7756"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7756",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7756"
},
{
"cve": "CVE-2017-7757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7757"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7757",
"url": "https://www.suse.com/security/cve/CVE-2017-7757"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7757",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7757"
},
{
"cve": "CVE-2017-7758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7758"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7758",
"url": "https://www.suse.com/security/cve/CVE-2017-7758"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7758",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7758"
},
{
"cve": "CVE-2017-7763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7763"
}
],
"notes": [
{
"category": "general",
"text": "Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7763",
"url": "https://www.suse.com/security/cve/CVE-2017-7763"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7763",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7763"
},
{
"cve": "CVE-2017-7764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7764"
}
],
"notes": [
{
"category": "general",
"text": "Characters from the \"Canadian Syllabics\" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw \"punycode\" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from \"Aspirational Use Scripts\" such as Canadian Syllabics to be mixed with Latin characters in the \"moderately restrictive\" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as \"Limited Use Scripts.\". This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7764",
"url": "https://www.suse.com/security/cve/CVE-2017-7764"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7764",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7764"
},
{
"cve": "CVE-2017-7765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7765"
}
],
"notes": [
{
"category": "general",
"text": "The \"Mark of the Web\" was not correctly saved on Windows when files with very long names were downloaded from the Internet. Without the Mark of the Web data, the security warning that Windows displays before running executables downloaded from the Internet is not shown. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7765",
"url": "https://www.suse.com/security/cve/CVE-2017-7765"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7765",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7765"
},
{
"cve": "CVE-2017-7773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7773"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow write in Graphite2 library in Firefox before 54 in lz4::decompress src/Decompressor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7773",
"url": "https://www.suse.com/security/cve/CVE-2017-7773"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7773",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7773"
},
{
"cve": "CVE-2017-7777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7777"
}
],
"notes": [
{
"category": "general",
"text": "Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::read_glyph function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7777",
"url": "https://www.suse.com/security/cve/CVE-2017-7777"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7777",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7777"
},
{
"cve": "CVE-2017-7778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7778"
}
],
"notes": [
{
"category": "general",
"text": "A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox \u003c 54, Firefox ESR \u003c 52.2, and Thunderbird \u003c 52.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7778",
"url": "https://www.suse.com/security/cve/CVE-2017-7778"
},
{
"category": "external",
"summary": "SUSE Bug 1043960 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1043960"
},
{
"category": "external",
"summary": "SUSE Bug 1044239 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044239"
},
{
"category": "external",
"summary": "SUSE Bug 1044240 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044240"
},
{
"category": "external",
"summary": "SUSE Bug 1044241 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044241"
},
{
"category": "external",
"summary": "SUSE Bug 1044242 for CVE-2017-7778",
"url": "https://bugzilla.suse.com/1044242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7778"
},
{
"cve": "CVE-2017-7779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7779"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 54, Firefox ESR 52.2, and Thunderbird 52.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7779",
"url": "https://www.suse.com/security/cve/CVE-2017-7779"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7779",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7779"
},
{
"cve": "CVE-2017-7782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7782"
}
],
"notes": [
{
"category": "general",
"text": "An error in the \"WindowsDllDetourPatcher\" where a RWX (\"Read/Write/Execute\") 4k block is allocated but never protected, violating DEP protections. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7782",
"url": "https://www.suse.com/security/cve/CVE-2017-7782"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7782",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7782"
},
{
"cve": "CVE-2017-7784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7784"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been freed. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7784",
"url": "https://www.suse.com/security/cve/CVE-2017-7784"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7784",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7784"
},
{
"cve": "CVE-2017-7785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7785"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow can occur when manipulating Accessible Rich Internet Applications (ARIA) attributes within the DOM. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7785",
"url": "https://www.suse.com/security/cve/CVE-2017-7785"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7785",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7785"
},
{
"cve": "CVE-2017-7786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7786"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7786",
"url": "https://www.suse.com/security/cve/CVE-2017-7786"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7786",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7786"
},
{
"cve": "CVE-2017-7787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7787"
}
],
"notes": [
{
"category": "general",
"text": "Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page, leading to information disclosure. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7787",
"url": "https://www.suse.com/security/cve/CVE-2017-7787"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7787",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7787"
},
{
"cve": "CVE-2017-7791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7791"
}
],
"notes": [
{
"category": "general",
"text": "On pages containing an iframe, the \"data:\" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7791",
"url": "https://www.suse.com/security/cve/CVE-2017-7791"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7791",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7791"
},
{
"cve": "CVE-2017-7792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7792"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7792",
"url": "https://www.suse.com/security/cve/CVE-2017-7792"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7792",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7792"
},
{
"cve": "CVE-2017-7793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7793"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7793",
"url": "https://www.suse.com/security/cve/CVE-2017-7793"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7793",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7793"
},
{
"cve": "CVE-2017-7798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7798"
}
],
"notes": [
{
"category": "general",
"text": "The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. This vulnerability affects Firefox ESR \u003c 52.3 and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7798",
"url": "https://www.suse.com/security/cve/CVE-2017-7798"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7798",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7798"
},
{
"cve": "CVE-2017-7800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7800"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7800",
"url": "https://www.suse.com/security/cve/CVE-2017-7800"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7800",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7800"
},
{
"cve": "CVE-2017-7801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7801"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur while re-computing layout for a \"marquee\" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7801",
"url": "https://www.suse.com/security/cve/CVE-2017-7801"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7801",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7801"
},
{
"cve": "CVE-2017-7802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7802"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when manipulating the DOM during the resize event of an image element. If these elements have been freed due to a lack of strong references, a potentially exploitable crash may occur when the freed elements are accessed. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7802",
"url": "https://www.suse.com/security/cve/CVE-2017-7802"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7802",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7802"
},
{
"cve": "CVE-2017-7803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7803"
}
],
"notes": [
{
"category": "general",
"text": "When a page\u0027s content security policy (CSP) header contains a \"sandbox\" directive, other directives are ignored. This results in the incorrect enforcement of CSP. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7803",
"url": "https://www.suse.com/security/cve/CVE-2017-7803"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7803",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7803"
},
{
"cve": "CVE-2017-7804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7804"
}
],
"notes": [
{
"category": "general",
"text": "The destructor function for the \"WindowsDllDetourPatcher\" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7804",
"url": "https://www.suse.com/security/cve/CVE-2017-7804"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7804",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7804"
},
{
"cve": "CVE-2017-7805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7805"
}
],
"notes": [
{
"category": "general",
"text": "During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leaves a pointer pointing to the old, freed buffer, resulting in a use-after-free when handshake hashes are then calculated afterwards. This can result in a potentially exploitable crash. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7805",
"url": "https://www.suse.com/security/cve/CVE-2017-7805"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7805",
"url": "https://bugzilla.suse.com/1060445"
},
{
"category": "external",
"summary": "SUSE Bug 1061005 for CVE-2017-7805",
"url": "https://bugzilla.suse.com/1061005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7805"
},
{
"cve": "CVE-2017-7807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7807"
}
],
"notes": [
{
"category": "general",
"text": "A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifest directory. This vulnerability affects Thunderbird \u003c 52.3, Firefox ESR \u003c 52.3, and Firefox \u003c 55.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7807",
"url": "https://www.suse.com/security/cve/CVE-2017-7807"
},
{
"category": "external",
"summary": "SUSE Bug 1052829 for CVE-2017-7807",
"url": "https://bugzilla.suse.com/1052829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7807"
},
{
"cve": "CVE-2017-7810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7810"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 55 and Firefox ESR 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7810",
"url": "https://www.suse.com/security/cve/CVE-2017-7810"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7810",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7810"
},
{
"cve": "CVE-2017-7814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7814"
}
],
"notes": [
{
"category": "general",
"text": "File downloads encoded with \"blob:\" and \"data:\" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7814",
"url": "https://www.suse.com/security/cve/CVE-2017-7814"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7814",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7814"
},
{
"cve": "CVE-2017-7818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7818"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications (ARIA) elements within containers through the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7818",
"url": "https://www.suse.com/security/cve/CVE-2017-7818"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7818",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7818"
},
{
"cve": "CVE-2017-7819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7819"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur in design mode when image objects are resized if objects referenced during the resizing have been freed from memory. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7819",
"url": "https://www.suse.com/security/cve/CVE-2017-7819"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7819",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7819"
},
{
"cve": "CVE-2017-7823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7823"
}
],
"notes": [
{
"category": "general",
"text": "The content security policy (CSP) \"sandbox\" directive did not create a unique origin for the document, causing it to behave as if the \"allow-same-origin\" keyword were always specified. This could allow a Cross-Site Scripting (XSS) attack to be launched from unsafe content. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7823",
"url": "https://www.suse.com/security/cve/CVE-2017-7823"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7823",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7823"
},
{
"cve": "CVE-2017-7824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7824"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7824",
"url": "https://www.suse.com/security/cve/CVE-2017-7824"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7824",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7824"
},
{
"cve": "CVE-2017-7825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7825"
}
],
"notes": [
{
"category": "general",
"text": "Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 56, Firefox ESR \u003c 52.4, and Thunderbird \u003c 52.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7825",
"url": "https://www.suse.com/security/cve/CVE-2017-7825"
},
{
"category": "external",
"summary": "SUSE Bug 1060445 for CVE-2017-7825",
"url": "https://bugzilla.suse.com/1060445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7825"
},
{
"cve": "CVE-2017-7826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7826"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 57, Firefox ESR \u003c 52.5, and Thunderbird \u003c 52.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7826",
"url": "https://www.suse.com/security/cve/CVE-2017-7826"
},
{
"category": "external",
"summary": "SUSE Bug 1068101 for CVE-2017-7826",
"url": "https://bugzilla.suse.com/1068101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7826"
},
{
"cve": "CVE-2017-7828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7828"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when flushing and resizing layout because the \"PressShell\" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox \u003c 57, Firefox ESR \u003c 52.5, and Thunderbird \u003c 52.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7828",
"url": "https://www.suse.com/security/cve/CVE-2017-7828"
},
{
"category": "external",
"summary": "SUSE Bug 1068101 for CVE-2017-7828",
"url": "https://bugzilla.suse.com/1068101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7828"
},
{
"cve": "CVE-2017-7829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7829"
}
],
"notes": [
{
"category": "general",
"text": "It is possible to spoof the sender\u0027s email address and display an arbitrary sender address to the email recipient. The real sender\u0027s address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird \u003c 52.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7829",
"url": "https://www.suse.com/security/cve/CVE-2017-7829"
},
{
"category": "external",
"summary": "SUSE Bug 1071236 for CVE-2017-7829",
"url": "https://bugzilla.suse.com/1071236"
},
{
"category": "external",
"summary": "SUSE Bug 1074046 for CVE-2017-7829",
"url": "https://bugzilla.suse.com/1074046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7829"
},
{
"cve": "CVE-2017-7830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7830"
}
],
"notes": [
{
"category": "general",
"text": "The Resource Timing API incorrectly revealed navigations in cross-origin iframes. This is a same-origin policy violation and could allow for data theft of URLs loaded by users. This vulnerability affects Firefox \u003c 57, Firefox ESR \u003c 52.5, and Thunderbird \u003c 52.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7830",
"url": "https://www.suse.com/security/cve/CVE-2017-7830"
},
{
"category": "external",
"summary": "SUSE Bug 1068101 for CVE-2017-7830",
"url": "https://bugzilla.suse.com/1068101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7830"
},
{
"cve": "CVE-2017-7845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7845"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird \u003c 52.5.2, Firefox ESR \u003c 52.5.2, and Firefox \u003c 57.0.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7845",
"url": "https://www.suse.com/security/cve/CVE-2017-7845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7845"
},
{
"cve": "CVE-2017-7846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7846"
}
],
"notes": [
{
"category": "general",
"text": "It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via \"View -\u003e Feed article -\u003e Website\" or in the standard format of \"View -\u003e Feed article -\u003e default format\". This vulnerability affects Thunderbird \u003c 52.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7846",
"url": "https://www.suse.com/security/cve/CVE-2017-7846"
},
{
"category": "external",
"summary": "SUSE Bug 1074043 for CVE-2017-7846",
"url": "https://bugzilla.suse.com/1074043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7846"
},
{
"cve": "CVE-2017-7847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7847"
}
],
"notes": [
{
"category": "general",
"text": "Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird \u003c 52.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7847",
"url": "https://www.suse.com/security/cve/CVE-2017-7847"
},
{
"category": "external",
"summary": "SUSE Bug 1074044 for CVE-2017-7847",
"url": "https://bugzilla.suse.com/1074044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7847"
},
{
"cve": "CVE-2017-7848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7848"
}
],
"notes": [
{
"category": "general",
"text": "RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird \u003c 52.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7848",
"url": "https://www.suse.com/security/cve/CVE-2017-7848"
},
{
"category": "external",
"summary": "SUSE Bug 1074045 for CVE-2017-7848",
"url": "https://bugzilla.suse.com/1074045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7848"
},
{
"cve": "CVE-2018-12359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12359"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow can occur when rendering canvas content while adjusting the height and width of the canvas element dynamically, causing data to be written outside of the currently computed boundaries. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12359",
"url": "https://www.suse.com/security/cve/CVE-2018-12359"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12359",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12359"
},
{
"cve": "CVE-2018-12360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12360"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that element. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12360",
"url": "https://www.suse.com/security/cve/CVE-2018-12360"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12360",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12360"
},
{
"cve": "CVE-2018-12361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12361"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow can occur in the SwizzleData code while calculating buffer sizes. The overflowed value is used for subsequent graphics computations when their inputs are not sanitized which results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Firefox ESR \u003c 60.1, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12361",
"url": "https://www.suse.com/security/cve/CVE-2018-12361"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12361",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12361"
},
{
"cve": "CVE-2018-12362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12362"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12362",
"url": "https://www.suse.com/security/cve/CVE-2018-12362"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12362",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12362"
},
{
"cve": "CVE-2018-12363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12363"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when script uses mutation events to move DOM nodes between documents, resulting in the old document that held the node being freed but the node still having a pointer referencing it. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12363",
"url": "https://www.suse.com/security/cve/CVE-2018-12363"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12363",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12363"
},
{
"cve": "CVE-2018-12364",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12364"
}
],
"notes": [
{
"category": "general",
"text": "NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin requests, bypassing CORS by making a same-origin POST that does a 307 redirect to the target site. This allows for a malicious site to engage in cross-site request forgery (CSRF) attacks. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12364",
"url": "https://www.suse.com/security/cve/CVE-2018-12364"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12364",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12364"
},
{
"cve": "CVE-2018-12365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12365"
}
],
"notes": [
{
"category": "general",
"text": "A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without user consent or interaction. This could result in exposure of private local files. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12365",
"url": "https://www.suse.com/security/cve/CVE-2018-12365"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12365",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12365"
},
{
"cve": "CVE-2018-12366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12366"
}
],
"notes": [
{
"category": "general",
"text": "An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12366",
"url": "https://www.suse.com/security/cve/CVE-2018-12366"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12366",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12366"
},
{
"cve": "CVE-2018-12367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12367"
}
],
"notes": [
{
"category": "general",
"text": "In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTiming was not adjusted but it was found that it could be used as a precision timer. This vulnerability affects Thunderbird \u003c 60, Firefox ESR \u003c 60.1, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12367",
"url": "https://www.suse.com/security/cve/CVE-2018-12367"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12367",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12367"
},
{
"cve": "CVE-2018-12371",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12371"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR \u003c 60.1, Thunderbird \u003c 60, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12371",
"url": "https://www.suse.com/security/cve/CVE-2018-12371"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-12371",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12371"
},
{
"cve": "CVE-2018-12372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12372"
}
],
"notes": [
{
"category": "general",
"text": "Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird \u003c 52.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12372",
"url": "https://www.suse.com/security/cve/CVE-2018-12372"
},
{
"category": "external",
"summary": "SUSE Bug 1100082 for CVE-2018-12372",
"url": "https://bugzilla.suse.com/1100082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-12372"
},
{
"cve": "CVE-2018-12373",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12373"
}
],
"notes": [
{
"category": "general",
"text": "dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird \u003c 52.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12373",
"url": "https://www.suse.com/security/cve/CVE-2018-12373"
},
{
"category": "external",
"summary": "SUSE Bug 1100079 for CVE-2018-12373",
"url": "https://bugzilla.suse.com/1100079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-12373"
},
{
"cve": "CVE-2018-12374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12374"
}
],
"notes": [
{
"category": "general",
"text": "Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. This vulnerability affects Thunderbird \u003c 52.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12374",
"url": "https://www.suse.com/security/cve/CVE-2018-12374"
},
{
"category": "external",
"summary": "SUSE Bug 1100081 for CVE-2018-12374",
"url": "https://bugzilla.suse.com/1100081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-12374"
},
{
"cve": "CVE-2018-12376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12376"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 62, Firefox ESR \u003c 60.2, and Thunderbird \u003c 60.2.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12376",
"url": "https://www.suse.com/security/cve/CVE-2018-12376"
},
{
"category": "external",
"summary": "SUSE Bug 1107343 for CVE-2018-12376",
"url": "https://bugzilla.suse.com/1107343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12376"
},
{
"cve": "CVE-2018-12377",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12377"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 62, Firefox ESR \u003c 60.2, and Thunderbird \u003c 60.2.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12377",
"url": "https://www.suse.com/security/cve/CVE-2018-12377"
},
{
"category": "external",
"summary": "SUSE Bug 1107343 for CVE-2018-12377",
"url": "https://bugzilla.suse.com/1107343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12377"
},
{
"cve": "CVE-2018-12378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12378"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploitable crash. This vulnerability affects Firefox \u003c 62, Firefox ESR \u003c 60.2, and Thunderbird \u003c 60.2.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12378",
"url": "https://www.suse.com/security/cve/CVE-2018-12378"
},
{
"category": "external",
"summary": "SUSE Bug 1107343 for CVE-2018-12378",
"url": "https://bugzilla.suse.com/1107343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12378"
},
{
"cve": "CVE-2018-12383",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12383"
}
],
"notes": [
{
"category": "general",
"text": "If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not deleted when the data was copied to a new format starting in Firefox 58. The new master password is added only on the new file. This could allow the exposure of stored password data outside of user expectations. This vulnerability affects Firefox \u003c 62, Firefox ESR \u003c 60.2.1, and Thunderbird \u003c 60.2.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12383",
"url": "https://www.suse.com/security/cve/CVE-2018-12383"
},
{
"category": "external",
"summary": "SUSE Bug 1107343 for CVE-2018-12383",
"url": "https://bugzilla.suse.com/1107343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12383"
},
{
"cve": "CVE-2018-12385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12385"
}
],
"notes": [
{
"category": "general",
"text": "A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to write data into the local cache or from locally installed malware. This issue also triggers a non-exploitable startup crash for users switching between the Nightly and Release versions of Firefox if the same profile is used. This vulnerability affects Thunderbird \u003c 60.2.1, Firefox ESR \u003c 60.2.1, and Firefox \u003c 62.0.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12385",
"url": "https://www.suse.com/security/cve/CVE-2018-12385"
},
{
"category": "external",
"summary": "SUSE Bug 1109363 for CVE-2018-12385",
"url": "https://bugzilla.suse.com/1109363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-12385"
},
{
"cve": "CVE-2018-12389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12389"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR \u003c 60.3 and Thunderbird \u003c 60.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12389",
"url": "https://www.suse.com/security/cve/CVE-2018-12389"
},
{
"category": "external",
"summary": "SUSE Bug 1112852 for CVE-2018-12389",
"url": "https://bugzilla.suse.com/1112852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12389"
},
{
"cve": "CVE-2018-12390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12390"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003c 63, Firefox ESR \u003c 60.3, and Thunderbird \u003c 60.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12390",
"url": "https://www.suse.com/security/cve/CVE-2018-12390"
},
{
"category": "external",
"summary": "SUSE Bug 1112852 for CVE-2018-12390",
"url": "https://bugzilla.suse.com/1112852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12390"
},
{
"cve": "CVE-2018-12391",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12391"
}
],
"notes": [
{
"category": "general",
"text": "During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the problem is in the underlying Android service, this issue is addressed by treating all HLS streams as cross-origin and opaque to access. *Note: this issue only affects Firefox for Android. Desktop versions of Firefox are unaffected.*. This vulnerability affects Firefox \u003c 63, Firefox ESR \u003c 60.3, and Thunderbird \u003c 60.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12391",
"url": "https://www.suse.com/security/cve/CVE-2018-12391"
},
{
"category": "external",
"summary": "SUSE Bug 1112852 for CVE-2018-12391",
"url": "https://bugzilla.suse.com/1112852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12391"
},
{
"cve": "CVE-2018-12392",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12392"
}
],
"notes": [
{
"category": "general",
"text": "When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exploitable crash due to poor event handling. This vulnerability affects Firefox \u003c 63, Firefox ESR \u003c 60.3, and Thunderbird \u003c 60.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12392",
"url": "https://www.suse.com/security/cve/CVE-2018-12392"
},
{
"category": "external",
"summary": "SUSE Bug 1112852 for CVE-2018-12392",
"url": "https://bugzilla.suse.com/1112852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12392"
},
{
"cve": "CVE-2018-12393",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12393"
}
],
"notes": [
{
"category": "general",
"text": "A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF-16 representation could result in allocating a buffer too small for the conversion. This leads to a possible out-of-bounds write. *Note: 64-bit builds are not vulnerable to this issue.*. This vulnerability affects Firefox \u003c 63, Firefox ESR \u003c 60.3, and Thunderbird \u003c 60.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12393",
"url": "https://www.suse.com/security/cve/CVE-2018-12393"
},
{
"category": "external",
"summary": "SUSE Bug 1112852 for CVE-2018-12393",
"url": "https://bugzilla.suse.com/1112852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12393"
},
{
"cve": "CVE-2018-12405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12405"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 60.4, Firefox ESR \u003c 60.4, and Firefox \u003c 64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12405",
"url": "https://www.suse.com/security/cve/CVE-2018-12405"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-12405",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-12405",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-12405",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-12405"
},
{
"cve": "CVE-2018-17466",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17466"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17466",
"url": "https://www.suse.com/security/cve/CVE-2018-17466"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-17466",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-17466",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-17466",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-17466"
},
{
"cve": "CVE-2018-18335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18335"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18335",
"url": "https://www.suse.com/security/cve/CVE-2018-18335"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18335",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18335",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18335"
},
{
"cve": "CVE-2018-18356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18356"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18356",
"url": "https://www.suse.com/security/cve/CVE-2018-18356"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "external",
"summary": "SUSE Bug 1125396 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18356"
},
{
"cve": "CVE-2018-18492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18492"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.4, Firefox ESR \u003c 60.4, and Firefox \u003c 64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18492",
"url": "https://www.suse.com/security/cve/CVE-2018-18492"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-18492",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-18492",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-18492",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18492"
},
{
"cve": "CVE-2018-18493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18493"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.4, Firefox ESR \u003c 60.4, and Firefox \u003c 64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18493",
"url": "https://www.suse.com/security/cve/CVE-2018-18493"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-18493",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-18493",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-18493",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18493"
},
{
"cve": "CVE-2018-18494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18494"
}
],
"notes": [
{
"category": "general",
"text": "A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird \u003c 60.4, Firefox ESR \u003c 60.4, and Firefox \u003c 64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18494",
"url": "https://www.suse.com/security/cve/CVE-2018-18494"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-18494",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-18494",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-18494",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18494"
},
{
"cve": "CVE-2018-18498",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18498"
}
],
"notes": [
{
"category": "general",
"text": "A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value. This leads to a possible out-of-bounds write. This vulnerability affects Thunderbird \u003c 60.4, Firefox ESR \u003c 60.4, and Firefox \u003c 64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18498",
"url": "https://www.suse.com/security/cve/CVE-2018-18498"
},
{
"category": "external",
"summary": "SUSE Bug 1112111 for CVE-2018-18498",
"url": "https://bugzilla.suse.com/1112111"
},
{
"category": "external",
"summary": "SUSE Bug 1119105 for CVE-2018-18498",
"url": "https://bugzilla.suse.com/1119105"
},
{
"category": "external",
"summary": "SUSE Bug 1121207 for CVE-2018-18498",
"url": "https://bugzilla.suse.com/1121207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18498"
},
{
"cve": "CVE-2018-18500",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18500"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the stream parser object being freed while still in use, leading to a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.5, Firefox ESR \u003c 60.5, and Firefox \u003c 65.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18500",
"url": "https://www.suse.com/security/cve/CVE-2018-18500"
},
{
"category": "external",
"summary": "SUSE Bug 1122983 for CVE-2018-18500",
"url": "https://bugzilla.suse.com/1122983"
},
{
"category": "external",
"summary": "SUSE Bug 986639 for CVE-2018-18500",
"url": "https://bugzilla.suse.com/986639"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18500"
},
{
"cve": "CVE-2018-18501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18501"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox 64 and Firefox ESR 60.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 60.5, Firefox ESR \u003c 60.5, and Firefox \u003c 65.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18501",
"url": "https://www.suse.com/security/cve/CVE-2018-18501"
},
{
"category": "external",
"summary": "SUSE Bug 1122983 for CVE-2018-18501",
"url": "https://bugzilla.suse.com/1122983"
},
{
"category": "external",
"summary": "SUSE Bug 986639 for CVE-2018-18501",
"url": "https://bugzilla.suse.com/986639"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18501"
},
{
"cve": "CVE-2018-18505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18505"
}
],
"notes": [
{
"category": "general",
"text": "An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the authentication not being correctly applied to later channels. This could allow for a sandbox escape through IPC channels due to lack of message validation in the listener process. This vulnerability affects Thunderbird \u003c 60.5, Firefox ESR \u003c 60.5, and Firefox \u003c 65.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18505",
"url": "https://www.suse.com/security/cve/CVE-2018-18505"
},
{
"category": "external",
"summary": "SUSE Bug 1122983 for CVE-2018-18505",
"url": "https://bugzilla.suse.com/1122983"
},
{
"category": "external",
"summary": "SUSE Bug 986639 for CVE-2018-18505",
"url": "https://bugzilla.suse.com/986639"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18505"
},
{
"cve": "CVE-2018-18509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18509"
}
],
"notes": [
{
"category": "general",
"text": "A flaw during verification of certain S/MIME signatures causes emails to be shown in Thunderbird as having a valid digital signature, even if the shown message contents aren\u0027t covered by the signature. The flaw allows an attacker to reuse a valid S/MIME signature to craft an email message with arbitrary content. This vulnerability affects Thunderbird \u003c 60.5.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18509",
"url": "https://www.suse.com/security/cve/CVE-2018-18509"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18509",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-18509"
},
{
"cve": "CVE-2018-18511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18511"
}
],
"notes": [
{
"category": "general",
"text": "Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. *Note: This only affects Firefox 65. Previous versions are unaffected.*. This vulnerability affects Firefox \u003c 65.0.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18511",
"url": "https://www.suse.com/security/cve/CVE-2018-18511"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18511",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "external",
"summary": "SUSE Bug 1125396 for CVE-2018-18511",
"url": "https://bugzilla.suse.com/1125396"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2018-18511",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-18511"
},
{
"cve": "CVE-2018-5089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5089"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5089",
"url": "https://www.suse.com/security/cve/CVE-2018-5089"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5089",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5089"
},
{
"cve": "CVE-2018-5095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5095"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5095",
"url": "https://www.suse.com/security/cve/CVE-2018-5095"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5095",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5095"
},
{
"cve": "CVE-2018-5096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5096"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur while editing events in form elements on a page, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR \u003c 52.6 and Thunderbird \u003c 52.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5096",
"url": "https://www.suse.com/security/cve/CVE-2018-5096"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5096",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5096"
},
{
"cve": "CVE-2018-5097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5097"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur during XSL transformations when the source document for the transformation is manipulated by script content during the transformation. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5097",
"url": "https://www.suse.com/security/cve/CVE-2018-5097"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5097",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5097"
},
{
"cve": "CVE-2018-5098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5098"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when form input elements, focus, and selections are manipulated by script content. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5098",
"url": "https://www.suse.com/security/cve/CVE-2018-5098"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5098",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5098"
},
{
"cve": "CVE-2018-5099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5099"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when the widget listener is holding strong references to browser objects that have previously been freed, resulting in a potentially exploitable crash when these references are used. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5099",
"url": "https://www.suse.com/security/cve/CVE-2018-5099"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5099",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5099"
},
{
"cve": "CVE-2018-5102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5102"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when manipulating HTML media elements with media streams, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5102",
"url": "https://www.suse.com/security/cve/CVE-2018-5102"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5102",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5102"
},
{
"cve": "CVE-2018-5103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5103"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur during mouse event handling due to issues with multiprocess support. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5103",
"url": "https://www.suse.com/security/cve/CVE-2018-5103"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5103",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5103"
},
{
"cve": "CVE-2018-5104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5104"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5104",
"url": "https://www.suse.com/security/cve/CVE-2018-5104"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5104",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5104"
},
{
"cve": "CVE-2018-5117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5117"
}
],
"notes": [
{
"category": "general",
"text": "If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this text to spoof the displayed URL. This issue could result in the wrong URL being displayed as a location, which can mislead users to believe they are on a different site than the one loaded. This vulnerability affects Thunderbird \u003c 52.6, Firefox ESR \u003c 52.6, and Firefox \u003c 58.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5117",
"url": "https://www.suse.com/security/cve/CVE-2018-5117"
},
{
"category": "external",
"summary": "SUSE Bug 1077291 for CVE-2018-5117",
"url": "https://bugzilla.suse.com/1077291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-5117"
},
{
"cve": "CVE-2018-5125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5125"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 58 and Firefox ESR 52.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.7, Firefox ESR \u003c 52.7, and Firefox \u003c 59.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5125",
"url": "https://www.suse.com/security/cve/CVE-2018-5125"
},
{
"category": "external",
"summary": "SUSE Bug 1085130 for CVE-2018-5125",
"url": "https://bugzilla.suse.com/1085130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5125"
},
{
"cve": "CVE-2018-5127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5127"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow can occur when manipulating the SVG \"animatedPathSegList\" through script. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.7, Firefox ESR \u003c 52.7, and Firefox \u003c 59.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5127",
"url": "https://www.suse.com/security/cve/CVE-2018-5127"
},
{
"category": "external",
"summary": "SUSE Bug 1085130 for CVE-2018-5127",
"url": "https://bugzilla.suse.com/1085130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5127"
},
{
"cve": "CVE-2018-5129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5129"
}
],
"notes": [
{
"category": "general",
"text": "A lack of parameter validation on IPC messages results in a potential out-of-bounds write through malformed IPC messages. This can potentially allow for sandbox escape through memory corruption in the parent process. This vulnerability affects Thunderbird \u003c 52.7, Firefox ESR \u003c 52.7, and Firefox \u003c 59.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5129",
"url": "https://www.suse.com/security/cve/CVE-2018-5129"
},
{
"category": "external",
"summary": "SUSE Bug 1085130 for CVE-2018-5129",
"url": "https://bugzilla.suse.com/1085130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5129"
},
{
"cve": "CVE-2018-5144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5144"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR \u003c 52.7 and Thunderbird \u003c 52.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5144",
"url": "https://www.suse.com/security/cve/CVE-2018-5144"
},
{
"category": "external",
"summary": "SUSE Bug 1085130 for CVE-2018-5144",
"url": "https://bugzilla.suse.com/1085130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-5144"
},
{
"cve": "CVE-2018-5145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5145"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox ESR 52.6. These bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR \u003c 52.7 and Thunderbird \u003c 52.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5145",
"url": "https://www.suse.com/security/cve/CVE-2018-5145"
},
{
"category": "external",
"summary": "SUSE Bug 1085130 for CVE-2018-5145",
"url": "https://bugzilla.suse.com/1085130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5145"
},
{
"cve": "CVE-2018-5146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5146"
}
],
"notes": [
{
"category": "general",
"text": "An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox \u003c 59.0.1, Firefox ESR \u003c 52.7.2, and Thunderbird \u003c 52.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5146",
"url": "https://www.suse.com/security/cve/CVE-2018-5146"
},
{
"category": "external",
"summary": "SUSE Bug 1085671 for CVE-2018-5146",
"url": "https://bugzilla.suse.com/1085671"
},
{
"category": "external",
"summary": "SUSE Bug 1085687 for CVE-2018-5146",
"url": "https://bugzilla.suse.com/1085687"
},
{
"category": "external",
"summary": "SUSE Bug 1180395 for CVE-2018-5146",
"url": "https://bugzilla.suse.com/1180395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5146"
},
{
"cve": "CVE-2018-5150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5150"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5150",
"url": "https://www.suse.com/security/cve/CVE-2018-5150"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5150",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5150"
},
{
"cve": "CVE-2018-5154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5154"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5154",
"url": "https://www.suse.com/security/cve/CVE-2018-5154"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5154",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5154"
},
{
"cve": "CVE-2018-5155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5155"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur while adjusting layout during SVG animations with text paths. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5155",
"url": "https://www.suse.com/security/cve/CVE-2018-5155"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5155",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5155"
},
{
"cve": "CVE-2018-5156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5156"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This can result in stream data being cast to the wrong type causing a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5156",
"url": "https://www.suse.com/security/cve/CVE-2018-5156"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-5156",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5156"
},
{
"cve": "CVE-2018-5159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5159"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5159",
"url": "https://www.suse.com/security/cve/CVE-2018-5159"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5159",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5159"
},
{
"cve": "CVE-2018-5161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5161"
}
],
"notes": [
{
"category": "general",
"text": "Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird ESR \u003c 52.8 and Thunderbird \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5161",
"url": "https://www.suse.com/security/cve/CVE-2018-5161"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5161",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5161"
},
{
"cve": "CVE-2018-5162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5162"
}
],
"notes": [
{
"category": "general",
"text": "Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR \u003c 52.8 and Thunderbird \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5162",
"url": "https://www.suse.com/security/cve/CVE-2018-5162"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093151 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093151"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5162",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5162"
},
{
"cve": "CVE-2018-5168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5168"
}
],
"notes": [
{
"category": "general",
"text": "Sites can bypass security checks on permissions to install lightweight themes by manipulating the \"baseURI\" property of the theme element. This could allow a malicious site to install a theme without user interaction which could contain offensive or embarrassing images. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5168",
"url": "https://www.suse.com/security/cve/CVE-2018-5168"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5168",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5168"
},
{
"cve": "CVE-2018-5170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5170"
}
],
"notes": [
{
"category": "general",
"text": "It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected. This vulnerability affects Thunderbird ESR \u003c 52.8 and Thunderbird \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5170",
"url": "https://www.suse.com/security/cve/CVE-2018-5170"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5170",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5170"
},
{
"cve": "CVE-2018-5174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5174"
}
],
"notes": [
{
"category": "general",
"text": "In the Windows 10 April 2018 Update, Windows Defender SmartScreen honors the \"SEE_MASK_FLAG_NO_UI\" flag associated with downloaded files and will not show any UI. Files that are unknown and potentially dangerous will be allowed to run because SmartScreen will not prompt the user for a decision, and if the user is offline all files will be allowed to be opened because Windows won\u0027t prompt the user to ask what to do. Firefox incorrectly sets this flag when downloading files, leading to less secure behavior from SmartScreen. Note: this issue only affects Windows 10 users running the April 2018 update or later. It does not affect other Windows users or other operating systems. This vulnerability affects Thunderbird \u003c 52.8, Thunderbird ESR \u003c 52.8, Firefox \u003c 60, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5174",
"url": "https://www.suse.com/security/cve/CVE-2018-5174"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5174",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5174"
},
{
"cve": "CVE-2018-5178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5178"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR \u003c 52.8, Thunderbird \u003c 52.8, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5178",
"url": "https://www.suse.com/security/cve/CVE-2018-5178"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5178",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5178"
},
{
"cve": "CVE-2018-5183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5183"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR \u003c 52.8, Thunderbird \u003c 52.8, and Firefox ESR \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5183",
"url": "https://www.suse.com/security/cve/CVE-2018-5183"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5183",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5183"
},
{
"cve": "CVE-2018-5184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5184"
}
],
"notes": [
{
"category": "general",
"text": "Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR \u003c 52.8 and Thunderbird \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5184",
"url": "https://www.suse.com/security/cve/CVE-2018-5184"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093152 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093152"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5184",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5184"
},
{
"cve": "CVE-2018-5185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5185"
}
],
"notes": [
{
"category": "general",
"text": "Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR \u003c 52.8 and Thunderbird \u003c 52.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5185",
"url": "https://www.suse.com/security/cve/CVE-2018-5185"
},
{
"category": "external",
"summary": "SUSE Bug 1092548 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1092548"
},
{
"category": "external",
"summary": "SUSE Bug 1092611 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1092611"
},
{
"category": "external",
"summary": "SUSE Bug 1093151 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093151"
},
{
"category": "external",
"summary": "SUSE Bug 1093969 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093969"
},
{
"category": "external",
"summary": "SUSE Bug 1093970 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093970"
},
{
"category": "external",
"summary": "SUSE Bug 1093971 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093971"
},
{
"category": "external",
"summary": "SUSE Bug 1093972 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093972"
},
{
"category": "external",
"summary": "SUSE Bug 1093973 for CVE-2018-5185",
"url": "https://bugzilla.suse.com/1093973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5185"
},
{
"cve": "CVE-2018-5187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5187"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs present in Firefox 60 and Firefox ESR 60. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 60, Firefox ESR \u003c 60.1, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5187",
"url": "https://www.suse.com/security/cve/CVE-2018-5187"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-5187",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5187"
},
{
"cve": "CVE-2018-5188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5188"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird \u003c 60, Thunderbird \u003c 52.9, Firefox ESR \u003c 60.1, Firefox ESR \u003c 52.9, and Firefox \u003c 61.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5188",
"url": "https://www.suse.com/security/cve/CVE-2018-5188"
},
{
"category": "external",
"summary": "SUSE Bug 1098998 for CVE-2018-5188",
"url": "https://bugzilla.suse.com/1098998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-5188"
},
{
"cve": "CVE-2019-11691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11691"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when working with XMLHttpRequest (XHR) in an event loop, causing the XHR main thread to be called after it has been freed. This results in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.7, Firefox \u003c 67, and Firefox ESR \u003c 60.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11691",
"url": "https://www.suse.com/security/cve/CVE-2019-11691"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2019-11691",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11691"
},
{
"cve": "CVE-2019-11692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11692"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.7, Firefox \u003c 67, and Firefox ESR \u003c 60.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11692",
"url": "https://www.suse.com/security/cve/CVE-2019-11692"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2019-11692",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11692"
},
{
"cve": "CVE-2019-11693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11693"
}
],
"notes": [
{
"category": "general",
"text": "The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are unaffected.*. This vulnerability affects Thunderbird \u003c 60.7, Firefox \u003c 67, and Firefox ESR \u003c 60.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11693",
"url": "https://www.suse.com/security/cve/CVE-2019-11693"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2019-11693",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11693"
},
{
"cve": "CVE-2019-11694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11694"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability exists in the Windows sandbox where an uninitialized value in memory can be leaked to a renderer from a broker when making a call to access an otherwise unavailable file. This results in the potential leaking of information stored at that memory location. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird \u003c 60.7, Firefox \u003c 67, and Firefox ESR \u003c 60.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11694",
"url": "https://www.suse.com/security/cve/CVE-2019-11694"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2019-11694",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11694"
},
{
"cve": "CVE-2019-11698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11698"
}
],
"notes": [
{
"category": "general",
"text": "If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user\u0027s browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird \u003c 60.7, Firefox \u003c 67, and Firefox ESR \u003c 60.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11698",
"url": "https://www.suse.com/security/cve/CVE-2019-11698"
},
{
"category": "external",
"summary": "SUSE Bug 1135824 for CVE-2019-11698",
"url": "https://bugzilla.suse.com/1135824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11698"
},
{
"cve": "CVE-2019-11703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11703"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in Thunderbird\u0027s implementation of iCal causes a heap buffer overflow in parser_get_next_char when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.7.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11703",
"url": "https://www.suse.com/security/cve/CVE-2019-11703"
},
{
"category": "external",
"summary": "SUSE Bug 1137595 for CVE-2019-11703",
"url": "https://bugzilla.suse.com/1137595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2019-11703"
},
{
"cve": "CVE-2019-11704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11704"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in Thunderbird\u0027s implementation of iCal causes a heap buffer overflow in icalmemory_strdup_and_dequote when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.7.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11704",
"url": "https://www.suse.com/security/cve/CVE-2019-11704"
},
{
"category": "external",
"summary": "SUSE Bug 1137595 for CVE-2019-11704",
"url": "https://bugzilla.suse.com/1137595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2019-11704"
},
{
"cve": "CVE-2019-11705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11705"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in Thunderbird\u0027s implementation of iCal causes a stack buffer overflow in icalrecur_add_bydayrules when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird \u003c 60.7.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-common-91.1.1-1.1.x86_64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.ppc64le",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.s390x",
"openSUSE Tumbleweed:MozillaThunderbird-translations-other-91.1.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11705",
"url": "https://www.suse.com/security/cve/CVE-2019-11705"
},
{
"category": "external",
"summary": "SUSE Bug 1137595 for CVE-2019-11705",
"url": "https://bugzilla.suse.com/1137595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:MozillaThunderbird-91.1.1-1.1.aarch64",
"openSUSE Tumbleweed:MozillaT