Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:alpm/archlinux/firefox@54.0-1

Type alpm

Namespace archlinux

Name firefox

Version 54.0-1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 55.0-1

Latest_non_vulnerable_version 101.0-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1j25-aujy-1fb3

vulnerability_id VCID-1j25-aujy-1fb3

summary A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7752

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1j25-aujy-1fb3

url VCID-1qr1-6zdx-fqd1

vulnerability_id VCID-1qr1-6zdx-fqd1

summary A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7757

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1qr1-6zdx-fqd1

url VCID-2ep2-61mb-cbd3

vulnerability_id VCID-2ep2-61mb-cbd3

summary A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7749

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2ep2-61mb-cbd3

url VCID-2nfu-kf32-myag

vulnerability_id VCID-2nfu-kf32-myag

summary A use-after-free vulnerability during video control operations when a <track> element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7750

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2nfu-kf32-myag

url VCID-6pr4-1zfj-9ydj

vulnerability_id VCID-6pr4-1zfj-9ydj

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7772

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6pr4-1zfj-9ydj

url VCID-6s7e-79u3-h7ed

vulnerability_id VCID-6s7e-79u3-h7ed

summary Mozilla developers and community members Tyson Smith, Mats Palmgren, Philipp, Masayuki Nakano, Christian Holler, Andrew McCreight, Gary Kwong, André Bargull, Carsten Book, Jesse Schwartzentruber, Julian Hector, Marcia Knous, Ronald Crane, and Nils Ohlmeier reported memory safety bugs present in Firefox 53, Firefox ESR 52.1, and Thunderbird 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-5470

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6s7e-79u3-h7ed

url VCID-8hfq-xxg6-tue8

vulnerability_id VCID-8hfq-xxg6-tue8

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7776

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8hfq-xxg6-tue8

url VCID-abde-jm4w-5yde

vulnerability_id VCID-abde-jm4w-5yde

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7771

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-abde-jm4w-5yde

url VCID-bxpd-zacn-8bfv

vulnerability_id VCID-bxpd-zacn-8bfv

summary A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-5472

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bxpd-zacn-8bfv

url VCID-jggu-sywf-13ag

vulnerability_id VCID-jggu-sywf-13ag

summary Mozilla developers and community members Mats Palmgren, Philipp, Byron Campen, Christian Holler, Gary Kwong, Benjamin Bouvier, Bob Clary, Jon Coppeard, and Michael Layzell reported memory safety bugs present in Firefox 53. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.

references

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-5471

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jggu-sywf-13ag

url VCID-njra-xv9f-ffck

vulnerability_id VCID-njra-xv9f-ffck

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7777

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-njra-xv9f-ffck

url VCID-ppw9-56ha-2bhm

vulnerability_id VCID-ppw9-56ha-2bhm

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7774

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ppw9-56ha-2bhm

url VCID-s4se-eex7-h7a6

vulnerability_id VCID-s4se-eex7-h7a6

summary A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7751

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s4se-eex7-h7a6

url VCID-s8cd-xy2t-vyem

vulnerability_id VCID-s8cd-xy2t-vyem

summary Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts."

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7764

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s8cd-xy2t-vyem

url VCID-u7r9-ukbq-mkb4

vulnerability_id VCID-u7r9-ukbq-mkb4

summary An out-of-bounds read in WebGL with a maliciously crafted ImageInfo object during WebGL operations.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7754

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u7r9-ukbq-mkb4

url VCID-uaga-tye9-gqg1

vulnerability_id VCID-uaga-tye9-gqg1

summary A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7756

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uaga-tye9-gqg1

url VCID-uh5h-t12y-h3b1

vulnerability_id VCID-uh5h-t12y-h3b1

summary A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7778

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uh5h-t12y-h3b1

url VCID-wdhd-qhry-jue5

vulnerability_id VCID-wdhd-qhry-jue5

summary When entered directly, Reader Mode did not strip the username and password section of URLs displayed in the addressbar. This can be used for spoofing the domain of the current page.

references

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7762

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wdhd-qhry-jue5

url VCID-wkxh-2hvz-kqhj

vulnerability_id VCID-wkxh-2hvz-kqhj

summary multiple issues

references

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7775

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wkxh-2hvz-kqhj

url VCID-wxca-7hua-tubu

vulnerability_id VCID-wxca-7hua-tubu

summary An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use.

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_id

mfsa2017-15

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-15

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_id

mfsa2017-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-16

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

reference_id

mfsa2017-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2017-17

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7758

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wxca-7hua-tubu

url VCID-zakg-k4hk-fyhm

vulnerability_id VCID-zakg-k4hk-fyhm

summary multiple issues

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778

reference_url	https://security.archlinux.org/ASA-201706-19
reference_id	ASA-201706-19
reference_type
scores
url	https://security.archlinux.org/ASA-201706-19

reference_url	https://security.archlinux.org/ASA-201706-20
reference_id	ASA-201706-20
reference_type
scores
url	https://security.archlinux.org/ASA-201706-20

reference_url

https://security.archlinux.org/AVG-302

reference_id

AVG-302

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-302

reference_url

https://security.archlinux.org/AVG-303

reference_id

AVG-303

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-303

fixed_packages

url	pkg:alpm/archlinux/firefox@54.0-1
purl	pkg:alpm/archlinux/firefox@54.0-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

aliases CVE-2017-7773

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zakg-k4hk-fyhm

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@54.0-1

Package Instance