Unrated severityNVD Advisory· Published Apr 26, 2019· Updated Aug 4, 2024
CVE-2019-9797
CVE-2019-9797
Description
Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element. This vulnerability affects Firefox < 66.
Affected products
4- osv-coords3 versionspkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Package%20Hub%2012
< 60.7.0-3.33.2+ 2 more
- (no CPE)range: < 60.7.0-3.33.2
- (no CPE)range: < 60.7.0-3.33.2
- (no CPE)range: < 60.7.2-85.1
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
19- lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.htmlmitrevendor-advisoryx_refsource_SUSE
- access.redhat.com/errata/RHSA-2019:1265mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:1267mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:1269mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:1308mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:1309mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:1310mitrevendor-advisoryx_refsource_REDHAT
- usn.ubuntu.com/3997-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2019/dsa-4448mitrevendor-advisoryx_refsource_DEBIAN
- www.debian.org/security/2019/dsa-4451mitrevendor-advisoryx_refsource_DEBIAN
- bugzilla.mozilla.org/show_bug.cgimitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/05/msg00032.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2019/05/msg00038.htmlmitremailing-listx_refsource_MLIST
- seclists.org/bugtraq/2019/May/56mitremailing-listx_refsource_BUGTRAQ
- seclists.org/bugtraq/2019/May/59mitremailing-listx_refsource_BUGTRAQ
- seclists.org/bugtraq/2019/May/67mitremailing-listx_refsource_BUGTRAQ
- www.mozilla.org/security/advisories/mfsa2019-07/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.