CVE-2019-11756: Use After Free
First published: Thu Nov 21 2019(Updated: )
A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS.
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/nspr | <0:4.25.0-2.el7_9 | 0:4.25.0-2.el7_9 |
| redhat/nss | <0:3.53.1-3.el7_9 | 0:3.53.1-3.el7_9 |
| redhat/nss-softokn | <0:3.53.1-6.el7_9 | 0:3.53.1-6.el7_9 |
| redhat/nss-util | <0:3.53.1-1.el7_9 | 0:3.53.1-1.el7_9 |
| redhat/nss-softokn | <0:3.28.3-10.el7_4 | 0:3.28.3-10.el7_4 |
| redhat/nss | <0:3.36.0-9.el7_6 | 0:3.36.0-9.el7_6 |
| redhat/nss-softokn | <0:3.36.0-7.el7_6 | 0:3.36.0-7.el7_6 |
| redhat/nss-softokn | <0:3.44.0-9.el7_7 | 0:3.44.0-9.el7_7 |
| redhat/nspr | <0:4.25.0-2.el8_2 | 0:4.25.0-2.el8_2 |
| redhat/nss | <0:3.53.1-11.el8_2 | 0:3.53.1-11.el8_2 |
| Mozilla Firefox | <71 | 71 |
| Mozilla Firefox | <71.0 | |
| IBM Security Guardium | <=10.5 | |
| IBM Security Guardium | <=10.6 | |
| IBM Security Guardium | <=11.0 | |
| IBM Security Guardium | <=11.1 | |
| IBM Security Guardium | <=11.2 | |
| IBM Security Guardium | <=11.3 | |
| IBM Security Guardium | <=11.4 | |
| redhat/nss | <3.47 | 3.47 |
| debian/firefox | 132.0.2-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2019-11756 https://nvd.nist.gov/vuln/detail/CVE-2019-11756 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_release_notes
- https://bugzilla.redhat.com/show_bug.cgi?id=1774835
- https://access.redhat.com/errata/RHSA-2020:4076
- https://access.redhat.com/errata/RHSA-2021:0758
- https://access.redhat.com/errata/RHSA-2021:0876
- https://access.redhat.com/errata/RHSA-2021:1026
- https://access.redhat.com/errata/RHSA-2020:3280
- https://access.redhat.com/security/cve/cve-2019-11756
- https://bugzilla.mozilla.org/show_bug.cgi?id=1508776
- https://www.mozilla.org/security/advisories/mfsa2019-36/
- https://launchpad.net/bugs/cve/CVE-2019-11756
- https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/
- https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-17014
- https://exchange.xforce.ibmcloud.com/vulnerabilities/172454
- https://www.ibm.com/support/pages/node/6831647 (Advisory)
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_release_notes
- https://hg.mozilla.org/projects/nss/rev/5619cbbca3db5f583a888181ec024069a46087aa
- https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-11756
- https://security-tracker.debian.org/tracker/CVE-2019-11756
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11756
- https://nvd.nist.gov/vuln/detail/CVE-2019-11756
- https://ubuntu.com/security/CVE-2019-11756
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2019-11756?
CVE-2019-11756 is a vulnerability in Mozilla Firefox that could allow a remote attacker to execute arbitrary code on the system.
What is the severity of CVE-2019-11756?
The severity of CVE-2019-11756 is high, with a CVSS score of 8.8.
How does CVE-2019-11756 occur?
CVE-2019-11756 occurs due to improper refcounting of soft token session objects, leading to a use-after-free vulnerability.
How can an attacker exploit CVE-2019-11756?
An attacker can exploit CVE-2019-11756 by persuading a victim to visit a specially-crafted website.
How can I protect myself from CVE-2019-11756?
To protect yourself from CVE-2019-11756, ensure that you have applied the necessary security updates provided by Mozilla Firefox or your operating system vendor.
- collector/redhat-cve
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/first-publish-date
- agent/author
- agent/severity
- agent/description
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- agent/weakness
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- collector/ibm-support
- source/IBM
- agent/references
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-11756
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- package-manager/redhat
- vendor/mozilla
- canonical/mozilla firefox
- vendor/ibm
- canonical/ibm security guardium
- version/ibm security guardium/10.5
- version/ibm security guardium/10.6
- version/ibm security guardium/11.0
- version/ibm security guardium/11.1
- version/ibm security guardium/11.2
- version/ibm security guardium/11.3
- version/ibm security guardium/11.4
- package-manager/debian