Endpoint Vulnerability

Use-after-free in nsHostResolver

Description

Security researchers Tyson Smith and Jesse Schwartzentruber of the BlackBerry Security Automated Analysis Team used the Address Sanitizer tool while fuzzing to discover a use-after-free during host resolution in some circumstances. This leads to a potentially exploitable crash.

Affected Products

Firefox,Firefox ESR

References

CVE-2014-1532,