Описание
Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| firefox | fixed | 148.0-1 | package | |
| firefox-esr | fixed | 140.8.0esr-1 | package | |
| thunderbird | fixed | 1:140.8.0esr-1 | package | |
| nss | fixed | 2:3.121-1 | package |
Примечания
https://www.mozilla.org/en-US/security/advisories/mfsa2026-13/#CVE-2026-2781
https://www.mozilla.org/en-US/security/advisories/mfsa2026-15/#CVE-2026-2781
https://www.mozilla.org/en-US/security/advisories/mfsa2026-17/#CVE-2026-2781
https://bugzilla.mozilla.org/show_bug.cgi?id=2009552 (private)
Fixed by: https://hg.mozilla.org/projects/nss/rev/245385e16fa6
Связанные уязвимости
Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.
Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35.
Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35.
