22 matches found
Astra Linux - уязвимость в firefox
The leakage of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability was fixed in Firefox 137 and Thunderbird 137...
CVE-2025-3032
Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox 137 and Thunderbird 137...
PT-2025-14107
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 137 Thunderbird versions prior to 137 Description The issue involves the leaking of file descriptors from the fork server to web content processes, which could allow for privilege escalation attacks. Recommendations F...
Mozilla -- privilege escalation attack
[email protected] reports: Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation
The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...
Sandbox Restrictions Bypass
firefox is vulnerable to sandbox restrictions bypass. The content processes did not sufficiently lockdown access control which could result in a sandbox escape...
CVE-2020-12389
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
CVE-2020-12388
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
CVE-2020-12388
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
UBUNTU-CVE-2020-12389
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
Design/Logic Flaw
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
CVE-2020-12388
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
CVE-2020-12388
The Mozilla Foundation Security Advisory describes this flaw as: The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape...
CVE-2020-12389
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...
WebKit AudioArray::allocate Data Race / Out-Of-Bounds Access Vulnerability
WebKit: Data race in AudioArray::allocate can lead to OOB access VULNERABILITY DETAILS Source/WebCore/platform/audio/AudioArray.h: void allocateChecked n ... while !isAllocationGood // Initially we try to allocate the exact size, but if it's not aligned // then we'll have to reallocate and from...