Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-28285

Опубликовано: 22 дек. 2022
Источник: debian

Описание

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed99.0-1package
firefox-esrfixed91.8.0esr-1package
thunderbirdfixed1:91.8.0-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2022-13/#CVE-2022-28285

  • https://www.mozilla.org/en-US/security/advisories/mfsa2022-14/#CVE-2022-28285

  • https://www.mozilla.org/en-US/security/advisories/mfsa2022-15/#CVE-2022-28285

Связанные уязвимости

ubuntu логотип

CVE-2022-28285

CVSS3: 6.5
ubuntu
больше 2 лет назад

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

redhat логотип

CVE-2022-28285

CVSS3: 6.1
redhat
около 3 лет назад

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

nvd логотип

CVE-2022-28285

CVSS3: 6.5
nvd
больше 2 лет назад

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

github логотип

GHSA-fmhg-h49x-72gp

CVSS3: 6.5
github
больше 2 лет назад

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

fstec логотип

BDU:2022-02371

CVSS3: 6.1
fstec
около 3 лет назад

Уязвимость компонента MLoadTypedArrayElementHole веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю раскрыть защищаемую информацию