Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially exploitable crash. *Note: this issue only affects Firefox on ARM64 platforms.* External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2020-25/#CVE-2020-12417
Acknowledgments: Name: the Mozilla project Upstream: Deian Stefan
Statement: This vulnerability only affects Firefox on ARM64/aarch64 platforms. Other architectures are not affected.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions Via RHSA-2020:2825 https://access.redhat.com/errata/RHSA-2020:2825
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2020:2826 https://access.redhat.com/errata/RHSA-2020:2826
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:2828 https://access.redhat.com/errata/RHSA-2020:2828
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:2827 https://access.redhat.com/errata/RHSA-2020:2827
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-12417
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2020:2907 https://access.redhat.com/errata/RHSA-2020:2907
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:2906 https://access.redhat.com/errata/RHSA-2020:2906
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions Via RHSA-2020:3046 https://access.redhat.com/errata/RHSA-2020:3046
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:3038 https://access.redhat.com/errata/RHSA-2020:3038