Bugzilla – Bug 1149287
VUL-0: CVE-2019-11734: MozillaFirefox: Memory safety bugs fixed in Firefox 69
Last modified: 2019-11-20 07:28:29 UTC
CVE-2019-11734: Memory safety bugs fixed in Firefox 69 Reporter Mozilla developers and community Impact high Description Mozilla developers and community members Randell Jesup, Philipp, Cosmin Sabou, and Natalia Csoregi reported memory safety bugs present in Firefox 68. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. References: https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/#CVE-2019-11734 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1352875%2C1536227%2C1557208%2C1560641 https://bugzilla.redhat.com/show_bug.cgi?id=1748676 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-11734
This issue is fixed in Firefox 69. openSUSE uses different versions: openSUSE:Leap:15.0 60.0esr openSUSE:Leap:15.1 60.6.2esr openSUSE:Leap:15.2 68.2.0esr openSUSE:Factory 70.0.1 SLE is also using only ESR versions and not Firefox 69. Closing bug as invalid.