Security Advisory

CVE-2020-15669

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-01 18:42:09

Last updated 2024-08-04 13:22:30

Assigner mozilla

State PUBLISHED

Description

When aborting an operation, such as a fetch, an abort signal may be deleted while alerting the objects to be notified. This results in a use-after-free and we presume that with enough effort it could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 68.12 and Thunderbird < 68.12.

← Browse all CVEs View on cve.org ↗