Mozilla Thunderbird < 131.0.1

The version of Thunderbird installed on the remote Windows host is prior to 131.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2024-52 advisory. - An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation...

The vulnerability of the animation control and synchronization handler in Mozilla Firefox and Firefox ESR web pages allows a hacker to execute arbitrary code.

The vulnerability of the animation control and synchronization handler in Mozilla Firefox and Firefox ESR browsers relates to the possibility of using memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by injecting it into the animation timi...

Mozilla Thunderbird < 115.16.0

The version of Thunderbird installed on the remote Windows host is prior to 115.16.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2024-52 advisory. - An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation...

Mozilla Thunderbird < 131.0.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 131.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2024-52 advisory. - An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animati...

FreeBSD : firefox -- use-after-free code execution (2fb13238-872d-11ef-bd1e-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2fb13238-872d-11ef-bd1e-b42e991fc52e advisory. [email protected] reports: An attacker was able to achieve code execution in the content process by...

Mozilla Thunderbird < 128.3.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 128.3.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2024-52 advisory. - An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animati...

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines...

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines...

Security Vulnerability fixed in Thunderbird 131.0.1, Thunderbird 128.3.1, Thunderbird 115.16.0 — Mozilla

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild...

Mozilla Firefox Security Update (MFSA2024-51) - Mac OS X

Mozilla Firefox is prone to an use after free vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

Mozilla Firefox ESR Security Update (MFSA2024-51) - Mac OS X

Mozilla Firefox ESR is prone to an use after free vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 For more details about the security issues, including the impact, a CVSS score,...

RHEL 8 : firefox (RHSA-2024:7977)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:7977 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-fr...

ALSA-2024:7958 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 For more details about the security issues, including the impact, a CVSS score,...

Slackware: Security Advisory (SSA:2024-283-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2024-9680

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1, Thunderbird...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.16.1esr-i686-1slack15.0.txz: Upgraded. This update contains a critical security fix: Use-after-free in...

CVE-2024-9680

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. Mitigation Red Hat has investigated whether a...

CVE-2024-9680

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1, Thunderbird...

DEBIAN-CVE-2024-9680

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1, Thunderbird...