Your submission was sent successfully! Close

CVE-2015-4484

Published: 11 August 2015

The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.

Priority

Low

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
precise
Released (40.0+build4-0ubuntu0.12.04.1)
trusty Does not exist
(trusty was released [40.0+build4-0ubuntu0.14.04.1])
upstream
Released (40.0)
vivid
Released (40.0+build4-0ubuntu0.15.04.1)