Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-1097

Опубликовано: 22 дек. 2022
Источник: ubuntu
Приоритет: medium
CVSS3: 6.5

Описание

NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

РелизСтатусПримечание
bionic

released

99.0+build2-0ubuntu0.18.04.2
devel

released

1:1snap1-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

99.0+build2-0ubuntu0.20.04.2
impish

released

99.0+build2-0ubuntu0.21.10.2
jammy

released

1:1snap1-0ubuntu1
kinetic

released

1:1snap1-0ubuntu1
lunar

released

1:1snap1-0ubuntu1
trusty

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

released

1:91.8.1+build1-0ubuntu0.18.04.1
devel

not-affected

1:102.3.3+build1-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

1:91.8.1+build1-0ubuntu0.20.04.1
impish

released

1:91.8.1+build1-0ubuntu0.21.10.1
jammy

not-affected

1:91.8.0+build2-0ubuntu1
kinetic

ignored

end of life, was needs-triage
lunar

not-affected

1:102.3.3+build1-0ubuntu1
trusty

ignored

end of standard support

Показывать по

Ссылки на источники

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2022-1097

CVSS3: 7.5
redhat
около 3 лет назад

<code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

nvd логотип

CVE-2022-1097

CVSS3: 6.5
nvd
больше 2 лет назад

<code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

debian логотип

CVE-2022-1097

CVSS3: 6.5
debian
больше 2 лет назад

<code>NSSToken</code> objects were referenced via direct points, and c ...

suse-cvrf логотип

SUSE-SU-2022:14936-1

suse-cvrf
около 3 лет назад

Security update for mozilla-nss

suse-cvrf логотип

SUSE-SU-2022:1149-1

suse-cvrf
около 3 лет назад

Security update for mozilla-nss

6.5 Medium

CVSS3