CVE-2015-4482

Publication date 16 August 2015

Last updated 24 July 2024


Ubuntu priority

mar_read.c in the Updater in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows local users to gain privileges or cause a denial of service (out-of-bounds write) via a crafted name of a Mozilla Archive (aka MAR) file.

Read the notes from the security team

Status

Package Ubuntu Release Status
firefox 15.04 vivid
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected
thunderbird 15.04 vivid
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected

Notes


chrisccoulson

Affects Mozilla updater