Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 39.0.3 (including) |
Firefox_esr | Mozilla | 38.0 (including) | 38.0 (including) |
Firefox_esr | Mozilla | 38.0.1 (including) | 38.0.1 (including) |
Firefox_esr | Mozilla | 38.0.5 (including) | 38.0.5 (including) |
Firefox_esr | Mozilla | 38.1.0 (including) | 38.1.0 (including) |