CVE-2024-3860

Опубликовано: 16 апр. 2024

Источник: debian

EPSS Низкий

Описание

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox < 125.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	fixed	125.0.1-1		package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2024-18/#CVE-2024-3860

EPSS

Процентиль: 9%

0.00044

Низкий

Связанные уязвимости

CVE-2024-3860

CVSS3: 6.2

ubuntu

больше 1 года назад

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox < 125.

CVE-2024-3860

CVSS3: 6.2

nvd

больше 1 года назад

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox < 125.

GHSA-f985-cwrv-f4qp

CVSS3: 6.2

github

больше 1 года назад

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox < 125.

BDU:2024-03794

CVSS3: 4.3

fstec

больше 1 года назад

Уязвимость JIT-компилятора браузера Mozilla Firefox, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 9%

0.00044

Низкий