CVE-2017-7805

Name: CVE-2017-7805
Creator: NVD / NIST
Published: 2018-06-11T21:29:10.047+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.15%

Last modified Jun 17, 2026

CVE-2017-7805 is a vulnerability of currently unknown severity. During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. EPSS estimates a 3.15% chance of exploitation in the next 30 days.

Description

During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leaves a pointer pointing to the old, freed buffer, resulting in a use-after-free when handshake hashes are then calculated afterwards. This can result in a potentially exploitable crash. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

Metrics

EPSS Probability

3.15%

86.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-416

Affected Software

Vendor	Product	Versions
Mozilla	Firefox	52.4.0
Mozilla	Firefox	56.0
Mozilla	Thunderbird	52.4.0
Debian	Debian Linux	7.0
Debian	Debian Linux	8.0
Debian	Debian Linux	9.0

References

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/101059Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1039465Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2017:2832Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1377618Issue Tracking, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2017/11/msg00000.htmlThird Party Advisory
https://security.gentoo.org/glsa/201803-14Third Party Advisory
https://www.debian.org/security/2017/dsa-3987Third Party Advisory
https://www.debian.org/security/2017/dsa-3998Third Party Advisory
https://www.debian.org/security/2017/dsa-4014Third Party Advisory
https://www.mozilla.org/security/advisories/mfsa2017-21/Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2017-22/Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2017-23/Vendor Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/101059Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1039465Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2017:2832Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1377618Issue Tracking, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2017/11/msg00000.htmlThird Party Advisory
https://security.gentoo.org/glsa/201803-14Third Party Advisory
https://www.debian.org/security/2017/dsa-3987Third Party Advisory
https://www.debian.org/security/2017/dsa-3998Third Party Advisory
https://www.debian.org/security/2017/dsa-4014Third Party Advisory
https://www.mozilla.org/security/advisories/mfsa2017-21/Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2017-22/Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2017-23/Vendor Advisory

Timeline

Published: Jun 11, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-7805?

How severe is CVE-2017-7805?

Severity scoring for CVE-2017-7805 is pending analysis. The EPSS model estimates a 3.15% probability of exploitation in the next 30 days.

How do I fix CVE-2017-7805?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-7805?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST