Mozilla: Potential integer overflow in ReplaceElementsAt

The Mozilla Foundation Security Advisory describes this flaw as: In the nsTArrayImpl::ReplaceElementsAt function, where an integer overflow could occur when the number of elements to replace was too large for the container...

Mozilla Firefox integer overflow vulnerability (CNVD-2023-75351)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from an integer overflow vulnerability that stems from improper validation of input data in the application's nsTArrayImpl::ReplaceElementsAt function, which can be exploited to...

PYSEC-2021-42

Pillow before 8.1.1 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

Arbitrary Code Execution

firefox/thunderbird is vulnerable to arbitrary code execution.A use-after-free vulnerability in the function nsFrameList::FirstChild allows remote attackers to cause a heap memory corruption that would result in arbitrary code execution or application crash by changing the size of the a container...

Buffer overflow and use-after-free issues found using Address Sanitizer — Mozilla

Security researcher Abhishek Arya of Google used the Address Sanitizer tool to uncover several issues: two heap buffer overflow bugs and a use-after-free problem. The first heap buffer overflow was found in conversion from unicode to native character sets when the function fails. The use-after-fr...