CVE-2015-2713: Use After Free
First published: Thu May 14 2015(Updated: )
Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a document containing crafted text in conjunction with a Cascading Style Sheets (CSS) token sequence containing properties related to vertical text.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SUSE Linux Enterprise Software Development Kit | =12.0 | |
| SUSE Linux Enterprise Desktop | =12.0 | |
| SUSE Linux Enterprise Server | =12.0 | |
| SUSE Linux | =13.1 | |
| SUSE Linux | =13.2 | |
| Firefox | <=37.0.2 | |
| Thunderbird | <=31.5 | |
| Firefox | =31.0 | |
| Firefox | =31.1.0 | |
| Firefox | =31.1.1 | |
| Firefox | =31.3.0 | |
| Firefox | =31.5.1 | |
| Firefox | =31.5.2 | |
| Firefox | =31.5.3 | |
| Firefox ESR | =31.1 | |
| Firefox ESR | =31.2 | |
| Firefox ESR | =31.3 | |
| Firefox ESR | =31.4 | |
| Firefox ESR | =31.5 | |
| Firefox ESR | =31.6.0 | |
| Firefox ESR | =31.0 | |
| Firefox ESR | =31.1.0 | |
| Firefox ESR | =31.1.1 | |
| Firefox ESR | =31.3.0 | |
| Firefox ESR | =31.5.1 | |
| Firefox ESR | =31.5.2 | |
| Firefox ESR | =31.5.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00054.html
- http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00000.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html
- http://rhn.redhat.com/errata/RHSA-2015-0988.html
- http://rhn.redhat.com/errata/RHSA-2015-1012.html
- http://www.debian.org/security/2015/dsa-3260
- http://www.debian.org/security/2015/dsa-3264
- http://www.mozilla.org/security/announce/2015/mfsa2015-51.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.securityfocus.com/bid/74611
- http://www.ubuntu.com/usn/USN-2602-1
- http://www.ubuntu.com/usn/USN-2603-1
- https://bugzilla.mozilla.org/show_bug.cgi?id=1153478
- https://security.gentoo.org/glsa/201605-06
- https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7
Frequently Asked Questions
What is the severity of CVE-2015-2713?
CVE-2015-2713 has a critical severity rating due to its capability to allow remote attackers to execute arbitrary code or cause a denial of service.
How do I fix CVE-2015-2713?
To fix CVE-2015-2713, update Mozilla Firefox to version 38.0 or later, or Thunderbird and Firefox ESR to version 31.7 or later.
Which software is affected by CVE-2015-2713?
CVE-2015-2713 affects Mozilla Firefox versions before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird versions before 31.7, along with specific SUSE Linux and openSUSE versions.
What type of vulnerability is described in CVE-2015-2713?
CVE-2015-2713 is a use-after-free vulnerability that can lead to heap memory corruption.
Can CVE-2015-2713 lead to data loss?
Yes, CVE-2015-2713 can potentially lead to data loss by allowing remote code execution or causing a denial of service.
- agent/type
- agent/severity
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/event
- agent/last-modified-date
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/novell
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/12.0
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/12.0
- canonical/suse linux enterprise server
- version/suse linux enterprise server/12.0
- vendor/opensuse
- canonical/suse linux
- version/suse linux/13.1
- version/suse linux/13.2
- vendor/mozilla
- canonical/firefox
- version/firefox/37.0.2
- canonical/thunderbird
- version/thunderbird/31.5
- version/firefox/31.0
- version/firefox/31.1.0
- version/firefox/31.1.1
- version/firefox/31.3.0
- version/firefox/31.5.1
- version/firefox/31.5.2
- version/firefox/31.5.3
- canonical/firefox esr
- version/firefox esr/31.1
- version/firefox esr/31.2
- version/firefox esr/31.3
- version/firefox esr/31.4
- version/firefox esr/31.5
- version/firefox esr/31.6.0
- version/firefox esr/31.0
- version/firefox esr/31.1.0
- version/firefox esr/31.1.1
- version/firefox esr/31.3.0
- version/firefox esr/31.5.1
- version/firefox esr/31.5.2
- version/firefox esr/31.5.3