Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2026-4684

Опубликовано: 24 мар. 2026
Источник: debian

Описание

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed149.0-1package
firefox-esrfixed140.9.0esr-1package
thunderbirdfixed1:140.9.0esr-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-20/#CVE-2026-4684

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-22/#CVE-2026-4684

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-24/#CVE-2026-4684

Связанные уязвимости

ubuntu логотип

CVE-2026-4684

CVSS3: 7.5
ubuntu
14 дней назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

redhat логотип

CVE-2026-4684

CVSS3: 7.5
redhat
14 дней назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

nvd логотип

CVE-2026-4684

CVSS3: 7.5
nvd
14 дней назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

github логотип

GHSA-3rrq-fwhx-9wq4

CVSS3: 7.5
github
14 дней назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9.

oracle-oval логотип

ELSA-2026-5932

oracle-oval
12 дней назад

ELSA-2026-5932: firefox security update (IMPORTANT)