Уязвимость "использования после освобождения" в коде подсчета ссылок из-за состояния гонки в Firefox
Описание
При проверке кода были обнаружены состояния гонки в коде подсчета ссылок. Это могло привести к потенциально эксплуатируемым уязвимостям "использования после освобождения" (use-after-free).
Затронутые версии ПО
- Firefox < 116
- Firefox ESR < 102.14
- Firefox ESR < 115.1
Тип уязвимости
Использование после освобождения (use-after-free)
Ссылки
- Issue TrackingPermissions Required
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Issue TrackingPermissions Required
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одно из
Одно из
EPSS
5.9 Medium
CVSS3
Дефекты
Связанные уязвимости
Race conditions in reference counting code were found through code inspection. These could have resulted in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Race conditions in reference counting code were found through code inspection. These could have resulted in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Race conditions in reference counting code were found through code ins ...
Race conditions in reference counting code were found through code inspection. These could have resulted in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Уязвимость браузеров Firefox, Firefox ESR, связанная с использованием памяти после ее освобождения, позволяющая нарушителю выполнить произвольный код
EPSS
5.9 Medium
CVSS3