The mozilla::AudioSink function in Mozilla Firefox prior to 40.0 and Firefox ESR 38.x prior to 38.2 mishandles inconsistent sample formats within MP3 audio data, which allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read) via a malformed file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox esr 38.0.1 |
||
mozilla firefox esr 38.0.5 |
||
mozilla firefox esr 38.1.0 |
||
mozilla firefox |
||
mozilla firefox esr 38.0 |
||
canonical ubuntu linux 15.04 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |