Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2026-4684

Опубликовано: 24 мар. 2026
Источник: debian

Описание

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed149.0-1package
firefox-esrfixed140.9.0esr-1package
thunderbirdfixed1:140.9.0esr-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-20/#CVE-2026-4684

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-22/#CVE-2026-4684

  • https://www.mozilla.org/en-US/security/advisories/mfsa2026-24/#CVE-2026-4684

Связанные уязвимости

ubuntu логотип

CVE-2026-4684

CVSS3: 7.5
ubuntu
3 месяца назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

redhat логотип

CVE-2026-4684

CVSS3: 7.5
redhat
3 месяца назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

nvd логотип

CVE-2026-4684

CVSS3: 7.5
nvd
3 месяца назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

github логотип

GHSA-3rrq-fwhx-9wq4

CVSS3: 7.5
github
3 месяца назад

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9.

fstec логотип

BDU:2026-04803

CVSS3: 7.5
fstec
3 месяца назад

Уязвимость компонента WebRender браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании