suse · CVE-2014-1592

Quick triage

Priority: medium Published: 2021-05-30 13:19:20 UTC Updated: 2026-04-18 18:42:41 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-1592 severity moderate: SUSE including 131 source package names (MozillaFirefox, MozillaFirefox-102.11.0-150200.152.87.1, …), 269 product×package rows across 81 product lines (Image SLES12-SP5-Azure-BYOS, Image SLES12-SP5-Azure-Basic-On-Demand, … (81 product lines)): Fixed 238, Known Not Affected 31.

Description:

Use-after-free vulnerability in the nsHtml5TreeOperation function in xul.dll in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code by adding a second root element to an HTML5 document during parsing.

cvelogic Threat Intelligence