CVE-2019-9812

NameCVE-2019-9812
DescriptionGiven a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then synchronized to the local machine and the compromised browser would restart without the sandbox if a crash is triggered. This vulnerability affects Firefox ESR < 60.9, Firefox ESR < 68.1, and Firefox < 69.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-1910-1, DSA-4516-1
NVD severitymedium

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
firefox (PTS)sid83.0-1fixed
firefox-esr (PTS)stretch68.10.0esr-1~deb9u1fixed
stretch (security)78.5.0esr-1~deb9u1fixed
buster68.12.0esr-1~deb10u1fixed
buster (security)78.5.0esr-1~deb10u1fixed
bullseye, sid78.5.0esr-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
firefoxsource(unstable)69.0-1
firefox-esrsourcejessie60.9.0esr-1~deb8u1DLA-1910-1
firefox-esrsourcestretch60.9.0esr-1~deb9u1DSA-4516-1
firefox-esrsourcebuster60.9.0esr-1~deb10u1DSA-4516-1
firefox-esrsource(unstable)68.1.0esr-1

Notes

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/#CVE-2019-9812
https://www.mozilla.org/en-US/security/advisories/mfsa2019-26/#CVE-2019-9812
https://www.mozilla.org/en-US/security/advisories/mfsa2019-27/#CVE-2019-9812

Search for package or bug name: Reporting problems