CVE-2019-17025
First published: Tue Jan 07 2020(Updated: )
Last updated 24 July 2024
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <72 | 72 |
| Mozilla Firefox | <72.0 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.04 | |
| Canonical Ubuntu Linux | =19.10 | |
| debian/firefox | 130.0-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.mozilla.org/security/advisories/mfsa2020-01/
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=1328295%2C1328300%2C1590447%2C1590965%2C1595692%2C1597321%2C1597481
- https://usn.ubuntu.com/4234-1/
- https://launchpad.net/bugs/cve/CVE-2019-17025
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17016
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17025
- https://security-tracker.debian.org/tracker/CVE-2019-17025
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17025
- https://nvd.nist.gov/vuln/detail/CVE-2019-17025
- https://ubuntu.com/security/CVE-2019-17025
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2019-17025?
CVE-2019-17025 is a vulnerability that involves memory safety bugs present in Firefox 71, which could potentially be exploited to run arbitrary code.
Who reported the memory safety bugs in Firefox 71?
The memory safety bugs in Firefox 71 were reported by Mozilla developers Karl Tomlinson, Jason Kratzer, Tyson Smith, Jon Coppeard, and Christian Holler.
What is the severity of CVE-2019-17025?
CVE-2019-17025 has a severity score of 8.8, indicating a high severity.
How can I fix CVE-2019-17025?
To fix CVE-2019-17025, update your Firefox browser to version 72 or higher.
Where can I find more information about CVE-2019-17025?
You can find more information about CVE-2019-17025 in the bugzilla.mozilla.org and mozilla.org websites.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/description
- agent/severity
- agent/weakness
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/mozilla
- canonical/mozilla firefox
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.04
- version/canonical ubuntu linux/19.10
- package-manager/debian