Critical Vulnerability Information Vulnerability Overview Bug ID: Bug 894370 CVE ID: CVE-2013-1739 Status: Closed, Fixed Closure Date: 12 years ago Vulnerability Details Type: Input assertion failure Detailed Description: Assertion failure at , where is greater than or equal to under certain conditions. Affected Versions: - Firefox 24 - Firefox 25 - Firefox 26 - Firefox 27 - Firefox-ESR 17 - Firefox-ESR 24 - b2g18 Impact Fix Status: - Firefox 26, 27, Firefox ESR 24, b2g18 have been fixed - Firefox 24, 25, Firefox ESR 17 are marked as affected but not upgraded Vulnerability Type: Security defect (sec-moderate) Patch and Fix Patch Uploader: Adam Langley Patch Review Status: Approved Patch Link: Patch Fixed Version: NSS 3.15.2 Fix Process Summary Discovery Cause: Assertion failure occurred during debug build while loading a specific website. Technical Analysis: The fix focused on handling long TLS/SSL decryption streams, ensuring more stable and correct processing of security-sensitive code. Fix Outcome: The patched version no longer exhibits the previous issue across multiple platforms. Additional Notes Related CVE: CVE-2013-1739 Keywords: assertion, regression, sec-moderate