[tor-bugs] #32913 [Applications/Tor Browser]: CVE-2019-17026 (Zero-Day Vulnerability in Mozilla Firefox)

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jan 9 18:53:37 UTC 2020

#32913: CVE-2019-17026 (Zero-Day Vulnerability in Mozilla Firefox)
 Reporter:  Gratus      |          Owner:  tbb-team
     Type:  task        |         Status:  new
 Priority:  High        |      Component:  Applications/Tor Browser
  Version:              |       Severity:  Major
 Keywords:  TorBrowser  |  Actual Points:
Parent ID:              |         Points:
 Reviewer:              |        Sponsor:
 hello, the version 9.0.3 is based on Firefox to 68.4.0esr.

 Or mozilla released critical fix in ESR 68.4.1 to prevent Zero-Day
 Vulnerability in Mozilla Firefox with the comment "We are aware of
 targeted attacks in the wild abusing this flaw".

 Links :
 * [https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/]
 * [https://fr.tenable.com/blog/cve-2019-17026-zero-day-vulnerability-in-

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32913>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list