Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-10464

Опубликовано: 29 окт. 2024
Источник: debian

Описание

Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed132.0-1package
firefox-esrfixed128.4.0esr-1package
thunderbirdfixed1:128.4.0esr-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10464

  • https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10464

  • https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10464

Связанные уязвимости

ubuntu логотип

CVE-2024-10464

CVSS3: 6.5
ubuntu
около 1 года назад

Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

redhat логотип

CVE-2024-10464

CVSS3: 6.5
redhat
около 1 года назад

Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

nvd логотип

CVE-2024-10464

CVSS3: 6.5
nvd
около 1 года назад

Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

github логотип

GHSA-r2v5-q2jv-5cff

CVSS3: 7.5
github
около 1 года назад

Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

fstec логотип

BDU:2025-00965

CVSS3: 6.5
fstec
около 1 года назад

Уязвимость веб-браузеров Firefox и Firefox ESR, почтового клиента Thunderbird, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании