2543 matches found
CVE-2024-4141
CVE-2024-4141: Out-of-bounds array write in Xpdf 4.05 and earlier caused by a bounds-check optimization bug in Type 1 font handling. The Fedora advisories indicate the issue is addressed by updating to xpdf 4.06 (Fedora 42/43 packages), which fixes the vulnerable code path. The CVE description no...
How to keep your visual effects settings in HDX/ICA session
In HDX/ICA session some visual effects are disabled. This article describes how to keep your visual effects settings in HDX/ICA session...
Debian dla-3791 : thunderbird - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3791 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3791-1 [email protected]...
Mozilla: Out-of-bounds-read after mis-optimized switch statement
The Mozilla Foundation Security Advisory describes this flaw as: In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads...
Mozilla: GetBoundName in the JIT returned the wrong object
The Mozilla Foundation Security Advisory describes this flaw as: GetBoundName could return the wrong version of an object when JIT optimizations were applied...
Mozilla: GetBoundName in the JIT returned the wrong object
The Mozilla Foundation Security Advisory describes this flaw as: GetBoundName could return the wrong version of an object when JIT optimizations were applied...
Mozilla: Out-of-bounds-read after mis-optimized switch statement
The Mozilla Foundation Security Advisory describes this flaw as: In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads...
Out-of-Bounds-Read
firefox is vulnerable to Out-of-Bounds-Read. The vulnerability is due to the incorrect optimization of MSubstr operations by the JIT Just-In-Time, leading to out-of-bounds reads in certain cases where MSubstr operations are incorrectly optimized...
Mozilla Thunderbird < 115.10
The version of Thunderbird installed on the remote Windows host is prior to 115.10. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-20 advisory. - The executable file warning was not presented when downloading .xrm-ms files. Note: This issue only affected...
Mozilla: Out-of-bounds-read after mis-optimized switch statement
The Mozilla Foundation Security Advisory describes this flaw as: In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads...
Mozilla: Out-of-bounds-read after mis-optimized switch statement
The Mozilla Foundation Security Advisory describes this flaw as: In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads...
Unspecified Vulnerability in Mozilla Firefox (CNVD-2024-37194)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox, which stems from a JIT incorrectly optimizing MSubstr operations under certain circumstances, and can be exploited by an attacker to cause an...
CVE-2024-26826 mptcp: fix data re-injection from stale subflow
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data re-injection from stale subflow When the MPTCP PM detects that a subflow is stale, all the packet scheduler must re-inject all the mptcp-level unacked data. To avoid acquiring unneeded locks, it first try to check...
Debian dsa-5663 : firefox-esr - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5663 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5663...
DEBIAN-CVE-2024-3854
In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10...
CVE-2024-3854
In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10...
CVE-2024-3855
In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox 125...
CVE-2024-3854
In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10...
CVE-2024-3855
In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox 125...
CVE-2024-3855
CVE-2024-3855 is a Firefox vulnerability where the JIT optimizer incorrectly handled MSubstr, causing out-of-bounds reads in affected builds. The issue affects Firefox versions older than 125. The cited sources (Mozilla bug 1885828 and MFSA advisory MFSA2024-18) describe the root cause in JIT str...