Vulnerability Description
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets (CSS) token sequences for a CANVAS element.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | 38.0 |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00013.html
- http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html
- http://lists.opensuse.org/opensuse-updates/2015-09/msg00000.html
- http://rhn.redhat.com/errata/RHSA-2015-1693.html
- http://www.debian.org/security/2015/dsa-3345
- http://www.mozilla.org/security/announce/2015/mfsa2015-94.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.securityfocus.com/bid/76502
- http://www.securitytracker.com/id/1033397
- http://www.ubuntu.com/usn/USN-2723-1
- http://www.zerodayinitiative.com/advisories/ZDI-15-406
- https://bugzilla.mozilla.org/show_bug.cgi?id=1164766
- https://bugzilla.mozilla.org/show_bug.cgi?id=1175278
- http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00013.html
- http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html
FAQ
What is CVE-2015-4497?
CVE-2015-4497 is a vulnerability with a CVSS score of 10.0 (HIGH). Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by lev...
How severe is CVE-2015-4497?
CVE-2015-4497 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4497?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox.