Bug 1265621 (CVE-2015-4507) - CVE-2015-4507 Mozilla: Crash when using debugger with SavedStacks in JavaScript (MFSA 2015-102)
Summary: CVE-2015-4507 Mozilla: Crash when using debugger with SavedStacks in JavaScri...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2015-4507
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: 1261782
TreeView+ depends on / blocked
 
Reported: 2015-09-23 11:17 UTC by Prasad Pandit
Modified: 2023-05-12 14:28 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-09-24 16:35:35 UTC
Embargoed:


Attachments (Terms of Use)

Description Prasad Pandit 2015-09-23 11:17:00 UTC
Security researcher Spandan Veggalam reported a crash while using the debugger
API with SavedStacks in JavaScript. This crash can only occurs when the
debugger is in use but may be potentially exploitable.

Upstream bug:

https://bugzilla.mozilla.org/show_bug.cgi?id=1192401

External References:

https://www.mozilla.org/en-US/security/advisories/mfsa2015-102/

Comment 1 Martin Prpič 2015-09-24 12:33:53 UTC
Acknowledgements:

Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Spandan Veggalam as the original reporter.

Comment 2 Martin Prpič 2015-09-24 16:35:35 UTC
This issue was fixed in Firefox version 41.


Note You need to log in before you can comment on or make changes to this bug.