Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4wx4-61y3-j3dr
Summary
Security researcher Bill Keese reported a memory corruption.
This is caused by JSDependentString::undepend changing a dependent string into a
fixed string when there are additional dependent strings relying on the same
base. When the undepend occurs during conversion, the base data is freed,
leaving other dependent strings with dangling pointers. This can lead to a
potentially exploitable crash.
Aliases
0
alias CVE-2012-1962
Fixed_packages
0
url pkg:mozilla/Firefox@14.0.0
purl pkg:mozilla/Firefox@14.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@14.0.0
1
url pkg:mozilla/Firefox%20ESR@10.0.6
purl pkg:mozilla/Firefox%20ESR@10.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@10.0.6
2
url pkg:mozilla/SeaMonkey@2.11.0
purl pkg:mozilla/SeaMonkey@2.11.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.11.0
3
url pkg:mozilla/Thunderbird@14.0.0
purl pkg:mozilla/Thunderbird@14.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@14.0.0
4
url pkg:mozilla/Thunderbird%20ESR@10.0.6
purl pkg:mozilla/Thunderbird%20ESR@10.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@10.0.6
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1962
reference_id CVE-2012-1962
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1962
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-52
reference_id mfsa2012-52
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-52
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4wx4-61y3-j3dr