Описание
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libusrsctp | fixed | 0.9.3.0+20201007-1 | package | |
| libusrsctp | ignored | buster | package | |
| firefox | fixed | 108.0-1 | package | |
| firefox-esr | fixed | 102.7.0esr-1 | package | |
| thunderbird | fixed | 1:102.7.1-1 | package |
Примечания
https://www.mozilla.org/en-US/security/advisories/mfsa2022-51/#CVE-2022-46871
https://www.mozilla.org/en-US/security/advisories/mfsa2023-02/#CVE-2022-46871
https://www.mozilla.org/en-US/security/advisories/mfsa2023-03/#CVE-2022-46871
https://bugs.launchpad.net/ubuntu/+source/libusrsctp/+bug/2015448
https://github.com/sctplab/usrsctp/commit/939d48f9632d69bf170c7a84514b312b6b42257d (0.9.4.0)
https://lists.debian.org/debian-lts/2023/06/msg00051.html
EPSS
Связанные уязвимости
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
Уязвимость библиотеки libusrsctp браузера Mozilla Firefox, позволяющая нарушителю вызвать использование уязвимой библиотеки и произвести атаку на устройство
EPSS