CVE-2022-34476

Опубликовано: 22 дек. 2022

Источник: debian

EPSS Низкий

Описание

ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1. This vulnerability affects Firefox < 102.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	fixed	102.0-1		package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2022-24/#CVE-2022-34476

EPSS

Процентиль: 67%

0.00539

Низкий

Связанные уязвимости

CVE-2022-34476

CVSS3: 9.8

ubuntu

почти 3 года назад

ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1. This vulnerability affects Firefox < 102.

CVE-2022-34476

CVSS3: 9.8

nvd

почти 3 года назад

ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1. This vulnerability affects Firefox < 102.

GHSA-prww-hcp7-652r

CVSS3: 9.8

github

почти 3 года назад

ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1. This vulnerability affects Firefox < 102.

SUSE-SU-2022:3273-1

suse-cvrf

около 3 лет назад

Security update for MozillaFirefox

SUSE-SU-2022:3272-1

suse-cvrf

около 3 лет назад

Security update for MozillaFirefox

EPSS

Процентиль: 67%

0.00539

Низкий