Showing 1 - 2 of 2

CVE-2024-3855

Status Candidate

Overview

In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox < 125.

Gentoo Linux Security Advisory 202408-02: Posted Aug 6, 2024; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202408-2 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could lead to remote code execution. Versions greater than or equal to 115.12.0:esr are affected.; tags | advisory, remote, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2024-2609, CVE-2024-3302, CVE-2024-3853, CVE-2024-3854, CVE-2024-3855, CVE-2024-3856, CVE-2024-3857, CVE-2024-3858, CVE-2024-3859, CVE-2024-3860, CVE-2024-3861, CVE-2024-3862, CVE-2024-3864, CVE-2024-3865; SHA-256 | c0ea0cef917b7d06f9c6d76a49568799519094420765d985e0df1bfda38e9c79; Download | Favorite | View

Ubuntu Security Notice USN-6747-1: Posted Apr 24, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6747-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Bartek Nowotarski discovered that Firefox did not properly limit HTTP/2 CONTINUATION frames. An attacker could potentially exploit this issue to cause a denial of service.; tags | advisory, web, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2024-3302, CVE-2024-3853, CVE-2024-3855, CVE-2024-3856, CVE-2024-3857, CVE-2024-3858, CVE-2024-3859, CVE-2024-3860, CVE-2024-3861, CVE-2024-3862, CVE-2024-3864, CVE-2024-3865; SHA-256 | fe5132fb8a5bc8bcd0558902c71cf2276c28f6168b4d2cd89f4e001ddfd7106d; Download | Favorite | View

Page 1 of 1 Back 1 Next