CVE-2023-25733

Опубликовано: 19 июн. 2023

Источник: debian

EPSS Низкий

Описание

The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	fixed	110.0-1		package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/#CVE-2023-25733

EPSS

Процентиль: 41%

0.0019

Низкий

Связанные уязвимости

CVE-2023-25733

CVSS3: 7.5

ubuntu

больше 2 лет назад

The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.

CVE-2023-25733

redhat

почти 3 года назад

The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.

CVE-2023-25733

CVSS3: 7.5

nvd

больше 2 лет назад

The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.

GHSA-v2f4-j72x-qfx5

CVSS3: 7.5

github

больше 2 лет назад

The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability affects Firefox < 110.

BDU:2023-04824

CVSS3: 7.5

fstec

почти 3 года назад

Уязвимость функции gfx::SourceSurfaceSkia::Map() веб-браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 41%

0.0019

Низкий