{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1622?format=json","vulnerability_id":"VCID-3scc-qaat-6fcu","summary":"A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash.","aliases":[{"alias":"CVE-2019-11692"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1690?format=json","purl":"pkg:alpm/archlinux/firefox@67.0-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@67.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/1692?format=json","purl":"pkg:alpm/archlinux/thunderbird@60.7.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2dm7-avtd-jufp"},{"vulnerability":"VCID-ekz3-15jf-dufb"},{"vulnerability":"VCID-n3sh-nbrs-9uhm"},{"vulnerability":"VCID-wfrh-24r7-6fdb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@60.7.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4806?format=json","purl":"pkg:deb/debian/firefox-esr@68.10.0esr-1~deb9u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.10.0esr-1~deb9u1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1689?format=json","purl":"pkg:alpm/archlinux/firefox@66.0.5-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2cgm-9y8c-cufx"},{"vulnerability":"VCID-2m6k-ur1p-xkdp"},{"vulnerability":"VCID-2ysc-4sp5-w7bg"},{"vulnerability":"VCID-3pd2-cent-rug4"},{"vulnerability":"VCID-3scc-qaat-6fcu"},{"vulnerability":"VCID-8ggr-4w7g-skan"},{"vulnerability":"VCID-dace-wnut-j7g5"},{"vulnerability":"VCID-kvzw-8f7a-t3b6"},{"vulnerability":"VCID-mamz-qn64-67dy"},{"vulnerability":"VCID-msbq-11je-jqg5"},{"vulnerability":"VCID-q7gq-5cb3-9khq"},{"vulnerability":"VCID-qv17-4yg6-yqhf"},{"vulnerability":"VCID-rumu-a3np-f3fc"},{"vulnerability":"VCID-x9zb-76d2-b3au"},{"vulnerability":"VCID-yhen-6hyd-3ug8"},{"vulnerability":"VCID-z1qg-tbqw-pbd4"},{"vulnerability":"VCID-znh5-2s68-skb7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@66.0.5-1"},{"url":"http://public2.vulnerablecode.io/api/packages/1691?format=json","purl":"pkg:alpm/archlinux/thunderbird@60.6.1-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2m6k-ur1p-xkdp"},{"vulnerability":"VCID-3scc-qaat-6fcu"},{"vulnerability":"VCID-dace-wnut-j7g5"},{"vulnerability":"VCID-jbm2-prug-f3c8"},{"vulnerability":"VCID-kvzw-8f7a-t3b6"},{"vulnerability":"VCID-msbq-11je-jqg5"},{"vulnerability":"VCID-q7gq-5cb3-9khq"},{"vulnerability":"VCID-rumu-a3np-f3fc"},{"vulnerability":"VCID-ubs4-gjtn-zbcb"},{"vulnerability":"VCID-yhen-6hyd-3ug8"},{"vulnerability":"VCID-znh5-2s68-skb7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@60.6.1-2"},{"url":"http://public2.vulnerablecode.io/api/packages/4805?format=json","purl":"pkg:deb/debian/firefox-esr@52.8.1esr-1~deb8u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11xu-avv4-9ufx"},{"vulnerability":"VCID-1jrk-9n37-qfcv"},{"vulnerability":"VCID-1squ-bxex-97hw"},{"vulnerability":"VCID-2bmn-k25n-v3f8"},{"vulnerability":"VCID-2hg5-57c1-z7gx"},{"vulnerability":"VCID-2v5h-3qba-k3gx"},{"vulnerability":"VCID-32ee-dr7n-tufz"},{"vulnerability":"VCID-3819-3qjj-zuh4"},{"vulnerability":"VCID-3scc-qaat-6fcu"},{"vulnerability":"VCID-4jn9-jbcs-yufs"},{"vulnerability":"VCID-4m26-hb5s-xkc6"},{"vulnerability":"VCID-4qav-6sgf-1qfc"},{"vulnerability":"VCID-5bmj-hcut-dkgx"},{"vulnerability":"VCID-7h53-f3h7-bfhx"},{"vulnerability":"VCID-7skz-3xdx-qfb2"},{"vulnerability":"VCID-7vk1-hcey-u3bn"},{"vulnerability":"VCID-7xpb-r1ud-bfe9"},{"vulnerability":"VCID-9hh5-pzwd-g3bc"},{"vulnerability":"VCID-9pa6-vyv2-jug4"},{"vulnerability":"VCID-9s3m-fes9-xqh2"},{"vulnerability":"VCID-a3bk-967p-tbey"},{"vulnerability":"VCID-a7f4-e11n-nudj"},{"vulnerability":"VCID-b3cr-fa8q-m7bw"},{"vulnerability":"VCID-b5fq-qdud-dfb9"},{"vulnerability":"VCID-bcec-844m-17er"},{"vulnerability":"VCID-bdbe-964v-pfht"},{"vulnerability":"VCID-bpz1-86sf-5ygu"},{"vulnerability":"VCID-br37-unbc-m7e9"},{"vulnerability":"VCID-c35e-jf9r-8ken"},{"vulnerability":"VCID-c6r5-w57v-cffj"},{"vulnerability":"VCID-cvna-73ya-gbg5"},{"vulnerability":"VCID-d5vr-k225-qkc2"},{"vulnerability":"VCID-da2s-wmfa-xqf1"},{"vulnerability":"VCID-dgz5-q1qt-e3h3"},{"vulnerability":"VCID-dng7-9qkz-fbar"},{"vulnerability":"VCID-e542-rp8s-3ber"},{"vulnerability":"VCID-ff85-wfhy-huaw"},{"vulnerability":"VCID-fgb7-rh62-xkg4"},{"vulnerability":"VCID-fvh9-g91r-ekfw"},{"vulnerability":"VCID-g4g4-bnph-2qgp"},{"vulnerability":"VCID-gus7-632r-pbe8"},{"vulnerability":"VCID-h916-7jyk-9qfn"},{"vulnerability":"VCID-he6e-re8n-kyax"},{"vulnerability":"VCID-herb-32az-vub9"},{"vulnerability":"VCID-hkv8-5j39-e7gx"},{"vulnerability":"VCID-kn5u-yu27-wygd"},{"vulnerability":"VCID-kvzw-8f7a-t3b6"},{"vulnerability":"VCID-kx36-ey2t-bygw"},{"vulnerability":"VCID-kzju-7twc-fya8"},{"vulnerability":"VCID-mamz-qn64-67dy"},{"vulnerability":"VCID-msbq-11je-jqg5"},{"vulnerability":"VCID-mwsp-vbxu-mqdn"},{"vulnerability":"VCID-net4-9ns4-v7dc"},{"vulnerability":"VCID-nnt4-kek2-w7dd"},{"vulnerability":"VCID-nw5y-qanq-xfes"},{"vulnerability":"VCID-nzqk-7c5d-8ye8"},{"vulnerability":"VCID-q8zd-91dy-x7cx"},{"vulnerability":"VCID-qqjk-vgcx-9ub7"},{"vulnerability":"VCID-r2n3-efm8-3yen"},{"vulnerability":"VCID-r394-m5sn-e7fn"},{"vulnerability":"VCID-rkqd-sddx-dqc6"},{"vulnerability":"VCID-rumu-a3np-f3fc"},{"vulnerability":"VCID-s5tu-sfkg-uyg6"},{"vulnerability":"VCID-spxa-ythw-gyg6"},{"vulnerability":"VCID-t8y9-a5nm-pbea"},{"vulnerability":"VCID-u2cf-d5ph-m7as"},{"vulnerability":"VCID-u3t9-ty7y-vkb8"},{"vulnerability":"VCID-ubs4-gjtn-zbcb"},{"vulnerability":"VCID-uds1-gpbh-vfbh"},{"vulnerability":"VCID-umwh-9b2n-9ue3"},{"vulnerability":"VCID-ushh-jwj4-yfcj"},{"vulnerability":"VCID-uyn9-fbsk-43ah"},{"vulnerability":"VCID-vgyr-fxfx-93ck"},{"vulnerability":"VCID-wqg4-ptah-6qg1"},{"vulnerability":"VCID-wvyv-n7c3-vyfu"},{"vulnerability":"VCID-x7sq-a7f4-97gx"},{"vulnerability":"VCID-xfu2-ppx1-fqgs"},{"vulnerability":"VCID-xnhs-mh64-8bdz"},{"vulnerability":"VCID-xttp-8g7s-cyhf"},{"vulnerability":"VCID-xxkg-b8ep-6yga"},{"vulnerability":"VCID-xyp9-rtmf-p3c9"},{"vulnerability":"VCID-y1xs-qvkc-2fcv"},{"vulnerability":"VCID-y916-adxe-hkab"},{"vulnerability":"VCID-yb98-sfa5-m7gz"},{"vulnerability":"VCID-yhen-6hyd-3ug8"},{"vulnerability":"VCID-z1v7-msh8-2qha"},{"vulnerability":"VCID-zf59-tvqm-rqhn"},{"vulnerability":"VCID-zubf-gz8r-g3dz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@52.8.1esr-1~deb8u1"}],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11692","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11692"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11698","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11698"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9800","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9800"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9817","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9817"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9819","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9819"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9820","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9820"},{"reference_url":"https://security.archlinux.org/ASA-201905-8","reference_id":"ASA-201905-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201905-8"},{"reference_url":"https://security.archlinux.org/ASA-201905-9","reference_id":"ASA-201905-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201905-9"},{"reference_url":"https://security.archlinux.org/AVG-965","reference_id":"AVG-965","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-965"},{"reference_url":"https://security.archlinux.org/AVG-966","reference_id":"AVG-966","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-966"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-13","reference_id":"mfsa2019-13","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-13"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-14","reference_id":"mfsa2019-14","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-14"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-15","reference_id":"mfsa2019-15","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-15"}],"weaknesses":[],"exploits":[],"severity_range_score":"7.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3scc-qaat-6fcu"}