CVE-2017-7806: Use After Free

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1378113
• https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/
• http://www.securityfocus.com/bid/100389
• http://www.securitytracker.com/id/1039124
• https://www.mozilla.org/security/advisories/mfsa2017-18/

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2017-18

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2017-7798
• CVE-2017-7800
• CVE-2017-7801
• CVE-2017-7809
• CVE-2017-7784
• CVE-2017-7802
• CVE-2017-7785
• CVE-2017-7786
• CVE-2017-7806
• CVE-2017-7753
• CVE-2017-7787
• CVE-2017-7807
• CVE-2017-7792
• CVE-2017-7804
• CVE-2017-7791
• CVE-2017-7808
• CVE-2017-7782
• CVE-2017-7781
• CVE-2017-7794
• CVE-2017-7803
• CVE-2017-7799
• CVE-2017-7783
• CVE-2017-7788
• CVE-2017-7789
• CVE-2017-7790
• CVE-2017-7796
• CVE-2017-7797
• CVE-2017-7780
• CVE-2017-7779

Frequently Asked Questions

• What is the severity of CVE-2017-7806?

  CVE-2017-7806 is classified as a high severity vulnerability that can lead to a potential crash.

• How do I fix CVE-2017-7806?

  To fix CVE-2017-7806, update Mozilla Firefox to version 55.0 or later.

• What type of vulnerability is CVE-2017-7806?

  CVE-2017-7806 is a use-after-free vulnerability that affects the layer manager when rendering SVG content.

• Which versions of Firefox are affected by CVE-2017-7806?

  CVE-2017-7806 affects Mozilla Firefox versions prior to 55.0.

• Can CVE-2017-7806 be exploited remotely?

  Yes, CVE-2017-7806 can potentially be exploited remotely leading to application crashes.