Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Firefox and Thunderbird

When encoding data from an inputStream in xpcom, the size of the input being encoded was not correctly calculated, potentially leading to an out-of-bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7.1AI score0.00737EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Module load requests that failed were not checked to determine whether they had been cancelled, resulting in a use-after-free in ScriptLoadContext. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7AI score0.00682EPSS
Exploits0References2
OSV
OSV
added 2023/06/02 5:15 p.m.1 views

DEBIAN-CVE-2023-25730

A background script invoking requestFullscreen and then blocking the main thread could force the browser into fullscreen mode indefinitely, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

5.4CVSS6.1AI score0.00546EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/06/02 5:15 p.m.6 views

CVE-2023-25739

Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in ScriptLoadContext. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS5.9AI score0.00682EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/17 2:5 a.m.3 views

SUSE CVE-2023-25737

An invalid downcast from nsTextNode to SVGElement could have lead to undefined behavior. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS6.4AI score0.00702EPSS
Exploits0References8
OSV
OSV
added 2023/02/15 12:0 a.m.5 views

UBUNTU-CVE-2023-25739

Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in ScriptLoadContext. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7.1AI score0.00682EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/10/26 12:0 a.m.6 views

PT-2023-1697 · Mozilla +10 · Thunderbird +11

Name of the Vulnerable Software and Affected Versions: Firefox ESR versions 102.7 and earlier Thunderbird versions prior to 102.8 Description: The issue is related to memory safety bugs, which can lead to memory corruption. With sufficient effort, these bugs could potentially be exploited to...

10CVSS8.1AI score0.26709EPSS
Exploits37References656
Rows per page
Query Builder