Lucene search
Alpine Linux Development TeamALPINE:CVE-2024-9400HistoryOct 01, 2024 - 4:15 p.m.
CVE-2024-9400
2024-10-0116:15:11
Alpine Linux Development Team
security.alpinelinux.org
memory corruption
oom
jit compilation
firefox
thunderbird
unix
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
A potential memory corruption vulnerability could be triggered if an attacker had the ability to trigger an OOM at a specific moment during JIT compilation. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | firefox | = 130.0.1-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox | = 130.0.1-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox-esr | = 115.15.0-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | thunderbird | = 128.2.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | firefox-esr | = 115.16.0-r0 | UNKNOWN |
| Alpine | edge-community | noarch | thunderbird | = 128.2.3-r0 | UNKNOWN |
Related
debiancve
debiancve
CVE-2024-9400
2024-10-01 16:15:11
vulnrichment
vulnrichment
CVE-2024-9400
2024-10-01 15:13:20
nvd
nvd
CVE-2024-9400
2024-10-01 16:15:11
cvelist
cvelist
CVE-2024-9400
2024-10-01 15:13:20
cve
cve
CVE-2024-9400
2024-10-01 16:15:11
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 128.3 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 131 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Firefox ESR 128.3 — Mozilla
2024-10-01 00:00:00
nessus
nessus
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox < 131.0
2024-10-01 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
Related for ALPINE:CVE-2024-9400