CVE-2015-4484 : The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and

The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.

Published 2015-08-16 01:59:12

Updated 2018-10-30 16:27:36

Source Mozilla Corporation

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Exploit prediction scoring system (EPSS) score for CVE-2015-4484

Probability of exploitation activity in the next 30 days: 4.86%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2015-4484

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2015-4484

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-4484

http://www.debian.org/security/2015/dsa-3333

Debian -- Security Information -- DSA-3333-1 iceweasel

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html

openSUSE-SU-2015:1454-1: moderate: Security update for MozillaThunderbir

CVEs referencing this url
https://bugzilla.mozilla.org/show_bug.cgi?id=1171540

1171540 - (CVE-2015-4484) crash in void js::jit::AssemblerX86Shared::lock_addl<js::jit::Imm32>(js::jit::Imm32, js::jit::Operand const&)
Issue Tracking
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html

[security-announce] SUSE-SU-2015:1449-1: important: Security update for

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html

[security-announce] openSUSE-SU-2015:1390-1: important: Security update
Third Party Advisory

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Oracle Solaris Bulletin - April 2016
Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2015-1586.html

RHSA-2015:1586 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html

[security-announce] openSUSE-SU-2015:1389-1: important: Security update
Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/201605-06

Mozilla Products: Multiple vulnerabilities (GLSA 201605-06) — Gentoo security

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-1

USN-2702-1: Firefox vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html

openSUSE-SU-2015:1453-1: moderate: Security update for MozillaThunderbir

CVEs referencing this url
http://www.mozilla.org/security/announce/2015/mfsa2015-87.html

Crash when using shared memory in JavaScript — Mozilla
Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00016.html

[security-announce] SUSE-SU-2015:1528-1: important: Security update for

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html

[security-announce] SUSE-SU-2015:2081-1: important: Security update for

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-3

USN-2702-3: Firefox regression | Ubuntu security notices

CVEs referencing this url
http://www.securitytracker.com/id/1033247

Mozilla Firefox Multiple Flaws Let Remote Users Execute Arbitrary Code, Obtain Potentially Sensitive Information, Bypass Security Restrictions, and Conduct Cross-Site Scripting Attacks - SecurityTrack

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-2

USN-2702-2: Ubufox update | Ubuntu security notices
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2015-4484

Oracle » Solaris » Version: 11.3
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox
Versions up to, including, (<=) 39.0.3
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0
cpe:2.3:a:mozilla:firefox_esr:38.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0.1
cpe:2.3:a:mozilla:firefox_esr:38.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0.5
cpe:2.3:a:mozilla:firefox_esr:38.0.5:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.1.0
cpe:2.3:a:mozilla:firefox_esr:38.1.0:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 15.04
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 14.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.2
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2015-4484

Exploit prediction scoring system (EPSS) score for CVE-2015-4484

CVSS scores for CVE-2015-4484

CWE ids for CVE-2015-4484

References for CVE-2015-4484

Products affected by CVE-2015-4484