Mozilla Foundation Security Advisory 2015-104

Use-after-free with shared workers and IndexedDB

Announced
September 22, 2015
Reporter
Looben Yang
Impact
Critical
Products
Firefox, SeaMonkey
Fixed in
  • Firefox 41
  • SeaMonkey 2.38

Description

Security researcher Looben Yang discovered a use-after-free vulnerability when using a shared worker with IndexedDB due to a race condition with the worker. This results in a potentially exploitable crash that can be triggered through web content.

References