The IndexedDatabaseManager class in the IndexedDB implementation in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 misinterprets an unspecified IDBDatabase field as a pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors, related to a type confusion issue.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Suse_linux_enterprise_desktop | Novell | 12.0 (including) | 12.0 (including) |
| Suse_linux_enterprise_server | Novell | 11-sp4 (including) | 11-sp4 (including) |
| Suse_linux_enterprise_server | Novell | 12.0 (including) | 12.0 (including) |
| Red Hat Enterprise Linux 5 | RedHat | firefox-0:38.1.0-1.el5_11 | * |
| Red Hat Enterprise Linux 6 | RedHat | firefox-0:38.1.0-1.el6_6 | * |
| Red Hat Enterprise Linux 7 | RedHat | firefox-0:38.1.0-1.ael7b_1 | * |
| Firefox | Ubuntu | devel | * |
| Firefox | Ubuntu | precise | * |
| Firefox | Ubuntu | trusty | * |
| Firefox | Ubuntu | upstream | * |
| Firefox | Ubuntu | utopic | * |
| Firefox | Ubuntu | vivid | * |