Lucene search
MozillaCVELIST:CVE-2023-4578HistorySep 11, 2023 - 8:01 a.m.
CVE-2023-4578
2023-09-1108:01:17
mozilla
www.cve.org
vulnerability
js::checkregexpsyntax
mishandles
out of memory
exceptions
firefox
thunderbird
When calling JS::CheckRegExpSyntax a Syntax Error could have been set which would end in calling convertToRuntimeErrorAndClear. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "117",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
alpinelinux
alpinelinux
CVE-2023-4578
2023-09-11 09:15:09
prion
prion
Design/Logic Flaw
2023-09-11 09:15:00
debiancve
debiancve
CVE-2023-4578
2023-09-11 09:15:09
cve
cve
CVE-2023-4578
2023-09-11 09:15:09
redhatcve
redhatcve
CVE-2023-4578
2023-08-30 10:15:53
ubuntucve
ubuntucve
CVE-2023-4578
2023-08-30 00:00:00
nvd
nvd
CVE-2023-4578
2023-09-11 09:15:09
veracode
veracode
Denial Of Service (DoS)
2023-09-03 12:44:40
nessus
nessus
Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6320-1)
2023-08-30 00:00:00
RHEL 8 : firefox (RHSA-2023:4951)
2023-09-04 00:00:00
osv
osv
thunderbird vulnerabilities
2023-10-03 09:29:09
firefox vulnerabilities
2023-08-30 04:21:36
Important: firefox security update
2023-09-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6320-1)
2023-08-31 00:00:00
Ubuntu: Security Advisory (USN-6405-1)
2023-10-04 00:00:00
Mozilla Firefox Security Advisory (MFSA2023-34) - Linux
2023-09-04 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-10-03 00:00:00
Firefox vulnerabilities
2023-08-30 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2023-09-05 00:00:00
thunderbird security update
2023-09-06 00:00:00
thunderbird security update
2023-09-06 00:00:00
redhat
redhat
(RHSA-2023:4955) Important: thunderbird security update
2023-09-04 15:04:43
(RHSA-2023:4948) Important: thunderbird security update
2023-09-04 15:03:59
(RHSA-2023:4954) Important: thunderbird security update
2023-09-04 15:04:42
almalinux
almalinux
Important: thunderbird security update
2023-09-04 00:00:00
Important: thunderbird security update
2023-09-04 00:00:00
Important: firefox security update
2023-09-04 00:00:00
rocky
rocky
thunderbird security update
2023-10-06 22:57:16
firefox security update
2023-10-06 22:57:16
kaspersky
kaspersky
KLA52660 Multiple vulnerabilities in Mozilla Firefox
2023-08-29 00:00:00
KLA52675 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-29 00:00:00
KLA52661 Multiple vulnerabilities in Mozilla Firefox ESR
2023-08-29 00:00:00
redos
redos
ROS-20230919-02
2023-09-19 00:00:00
ROS-20230919-01
2023-09-19 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 117 — Mozilla
2023-08-29 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.2 — Mozilla
2023-08-29 00:00:00
Security Vulnerabilities fixed in Firefox ESR 115.2 — Mozilla
2023-08-29 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2023-08-30 22:09:54
mageia
mageia
Updated firefox/thunderbird packages fix security vulnerability
2023-09-25 01:16:18
rosalinux
rosalinux
Advisory ROSA-SA-2024-2371
2024-03-12 12:37:38
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm