Уязвимость "использования после освобождения" (use-after-free) при обновлении Firefox на macOS, способная привести к аварийному завершению работы
Описание
На macOS могла возникать уязвимость типа "использование после освобождения" (use-after-free), если обновление Firefox применялось на очень загруженной системе. Это могло привести к эксплуатируемому аварийному завершению работы.
Затронутые версии ПО
- Firefox < 122
Тип уязвимости
Аварийное завершение работы (crash)
Ссылки
- Issue TrackingPermissions Required
- Release NotesVendor Advisory
- Issue TrackingPermissions Required
- Release NotesVendor Advisory
Уязвимые конфигурации
EPSS
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122.
A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122.
A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122.
A use-after-free crash could have occurred on macOS if a Firefox updat ...
A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122.
EPSS
6.5 Medium
CVSS3