{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/511?format=json","vulnerability_id":"VCID-3c5t-9cf7-cfgj","summary":"Mozilla developers and community members Christoph Diehl, Jan de Mooij, Jason Kratzer, Randell Jesup, Tom Ritter, Tyson Smith, and Sebastian Hengst reported memory safety bugs present in Firefox 55, Firefox ESR 52.3, and Thunderbird 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.","aliases":[{"alias":"CVE-2017-7810"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1836?format=json","purl":"pkg:alpm/archlinux/thunderbird@52.4.0-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.4.0-1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1835?format=json","purl":"pkg:alpm/archlinux/thunderbird@52.3.0-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3c5t-9cf7-cfgj"},{"vulnerability":"VCID-3stg-h59a-gfe5"},{"vulnerability":"VCID-9sjh-566z-5ya9"},{"vulnerability":"VCID-aabg-akur-cyf3"},{"vulnerability":"VCID-bb54-p55g-vqcp"},{"vulnerability":"VCID-ehs1-23nr-xuhj"},{"vulnerability":"VCID-uzq4-pssq-nfcg"},{"vulnerability":"VCID-y794-x8z6-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.3.0-2"}],"references":[{"reference_url":"https://security.archlinux.org/ASA-201710-19","reference_id":"ASA-201710-19","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-19"},{"reference_url":"https://security.archlinux.org/AVG-441","reference_id":"AVG-441","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-441"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-21","reference_id":"mfsa2017-21","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-21"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-22","reference_id":"mfsa2017-22","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-23","reference_id":"mfsa2017-23","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-23"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3c5t-9cf7-cfgj"}