Fedora Account System
Red Hat Associate
Red Hat Customer
The type inference system allows the compilation of functions that can cause type confusions between arbitrary objects when compiled through the IonMonkey just-in-time (JIT) compiler and when the constructor function is entered through on-stack replacement (OSR). This allows for possible arbitrary reading and writing of objects during an exploitable crash. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2019-08/#CVE-2019-9791
Acknowledgments: Name: the Mozilla project Upstream: Samuel Groß (Google Project Zero)
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:0622 https://access.redhat.com/errata/RHSA-2019:0622
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2019:0623 https://access.redhat.com/errata/RHSA-2019:0623
Statement: In general, this flaw be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts.
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2019:0680 https://access.redhat.com/errata/RHSA-2019:0680
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:0681 https://access.redhat.com/errata/RHSA-2019:0681
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:0966 https://access.redhat.com/errata/RHSA-2019:0966
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:1144 https://access.redhat.com/errata/RHSA-2019:1144