VDB

GCVE-110-MAGEIA-2017-361

GCVE-110-MAGEIA-2017-361
Advisory Published
Vulnetix · Advisory published October 5, 2017
A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application (CVE-2017-7805). Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox (CVE-2017-7810, CVE-2017-7793, CVE-2017-7818, CVE-2017-7819, CVE-2017-7824, CVE-2017-7814, CVE-2017-7823).

Affected Products

VendorProductVersionsPlatforms
Mageianss0 (affected), 3.28.6-1.mga5 (unaffected)
Mageianss0 (affected), 3.28.6-1.mga6 (unaffected)
Mageiafirefox-l10n0 (affected), 52.4.0-1.mga5 (unaffected)
Mageiafirefox-l10n52.4.0-1.mga6 (unaffected), 0 (affected)
Mageianspr4.17-1.mga5 (unaffected), 0 (affected)
Mageianspr0 (affected), 4.17-1.mga6 (unaffected)
Mageiafirefox0 (affected), 52.4.0-1.mga6 (unaffected)
Mageiafirefox0 (affected), 52.4.0-1.mga5 (unaffected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›