{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2357?format=json","vulnerability_id":"VCID-4wx4-61y3-j3dr","summary":"Security researcher Bill Keese reported a memory corruption.\nThis is caused by JSDependentString::undepend changing a dependent string into a\nfixed string when there are additional dependent strings relying on the same\nbase. When the undepend occurs during conversion, the base data is freed,\nleaving other dependent strings with dangling pointers. This can lead to a\npotentially exploitable crash.","aliases":[{"alias":"CVE-2012-1962"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1020?format=json","purl":"pkg:mozilla/Firefox@14.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@14.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1021?format=json","purl":"pkg:mozilla/Firefox%20ESR@10.0.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@10.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/1024?format=json","purl":"pkg:mozilla/SeaMonkey@2.11.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.11.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1022?format=json","purl":"pkg:mozilla/Thunderbird@14.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@14.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1023?format=json","purl":"pkg:mozilla/Thunderbird%20ESR@10.0.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@10.0.6"}],"affected_packages":[],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1962","reference_id":"CVE-2012-1962","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1962"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-52","reference_id":"mfsa2012-52","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-52"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4wx4-61y3-j3dr"}