Lucene search
Alpine Linux Development TeamALPINE:CVE-2023-6207HistoryNov 21, 2023 - 3:15 p.m.
CVE-2023-6207
2023-11-2115:15:07
Alpine Linux Development Team
security.alpinelinux.org
3
ownership mismanagement
use-after-free
firefox
thunderbird
vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
38.1%
Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | firefox-esr | < 115.5.0-r0 | UNKNOWN |
| Alpine | edge-community | noarch | thunderbird | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | firefox-esr | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | thunderbird | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | firefox-esr | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | thunderbird | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox-esr | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | thunderbird | < 115.5.0-r0 | UNKNOWN |
Related
cve
cve
CVE-2023-6207
2023-11-21 15:15:07
ubuntucve
ubuntucve
CVE-2023-6207
2023-11-21 00:00:00
nvd
nvd
CVE-2023-6207
2023-11-21 15:15:07
cvelist
cvelist
CVE-2023-6207
2023-11-21 14:28:53
redhatcve
redhatcve
CVE-2023-6207
2023-11-21 23:10:12
debiancve
debiancve
CVE-2023-6207
2023-11-21 15:15:07
veracode
veracode
Use After Free
2023-11-28 14:18:18
prion
prion
Design/Logic Flaw
2023-11-21 15:15:00
openvas
openvas
nessus
nessus
RHEL 8 : thunderbird (RHSA-2023:7570)
2023-11-29 00:00:00
RHEL 8 : thunderbird (RHSA-2023:7502)
2023-11-27 00:00:00
Mozilla Thunderbird < 115.5.0
2023-11-21 00:00:00
osv
osv
thunderbird vulnerabilities
2023-11-27 05:45:20
Important: thunderbird security update
2023-11-27 00:00:00
firefox-esr - security update
2023-11-22 00:00:00
redhat
redhat
(RHSA-2023:7499) Important: thunderbird security update
2023-11-27 15:01:51
(RHSA-2023:7573) Important: firefox security update
2023-11-29 13:31:33
(RHSA-2023:7577) Important: firefox security update
2023-11-29 13:44:27
mageia
mageia
Updated firefox packages fix security vulnerabilities
2023-12-08 13:55:49
Updated thunderbird packages fix security vulnerabilities
2023-12-08 13:55:49
amazon
amazon
Important: thunderbird
2024-01-03 21:04:00
oraclelinux
oraclelinux
firefox security update
2023-11-28 00:00:00
firefox security update
2023-11-27 00:00:00
thunderbird security update
2023-11-28 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 115.5 — Mozilla
2023-11-21 00:00:00
Security Vulnerabilities fixed in Firefox ESR 115.5.0 — Mozilla
2023-11-21 00:00:00
Security Vulnerabilities fixed in Firefox 120 — Mozilla
2023-11-21 00:00:00
debian
debian
[SECURITY] [DLA 3661-1] firefox-esr security update
2023-11-23 22:42:30
[SECURITY] [DLA 3674-1] thunderbird security update
2023-11-30 14:26:11
[SECURITY] [DSA 5561-1] firefox-esr security update
2023-11-22 19:19:54
rocky
rocky
thunderbird security update
2023-11-28 22:43:36
kaspersky
kaspersky
KLA62089 Multiple vulnerabilities in Mozilla Firefox ESR
2023-11-21 00:00:00
KLA62090 Multiple vulnerabilities in Mozilla Thunderbird
2023-11-21 00:00:00
KLA62070 Multiple vulnerabilities in Mozilla Firefox
2023-11-21 00:00:00
almalinux
almalinux
Important: thunderbird security update
2023-11-27 00:00:00
Important: thunderbird security update
2023-11-27 00:00:00
Important: firefox security update
2023-11-27 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2023-11-21 21:38:12
[slackware-security] mozilla-thunderbird
2023-11-22 19:38:40
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-11-27 00:00:00
Firefox vulnerabilities
2023-11-23 00:00:00
Firefox regressions
2023-12-04 00:00:00
redos
redos
ROS-20240927-06
2024-09-27 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
38.1%
Related for ALPINE:CVE-2023-6207