CVE-2015-2735

Publication date 5 July 2015

Last updated 24 July 2024

Ubuntu priority

nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to have an unspecified impact via a crafted ZIP archive.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	15.04 vivid	Fixed 39.0+build5-0ubuntu0.15.04.1
	14.10 utopic	Fixed 39.0+build5-0ubuntu0.14.10.1
	14.04 LTS trusty	Fixed 39.0+build5-0ubuntu0.14.04.1
	12.04 LTS precise	Fixed 39.0+build5-0ubuntu0.12.04.2
thunderbird	15.04 vivid	Fixed 1:31.8.0+build1-0ubuntu0.15.04.1
	14.10 utopic	Fixed 1:31.8.0+build1-0ubuntu0.14.10.1
	14.04 LTS trusty	Fixed 1:31.8.0+build1-0ubuntu0.14.04.1
	12.04 LTS precise	Fixed 1:31.8.0+build1-0ubuntu0.12.04.1

References

Related Ubuntu Security Notices (USN)

USN-2673-1
Thunderbird vulnerabilities
20 July 2015

USN-2656-1
Firefox vulnerabilities
9 July 2015

USN-2656-2
Firefox vulnerabilities
15 July 2015

CVE-2015-2735

Status

References

Related Ubuntu Security Notices (USN)

Other references