Arbitrary Code Execution

unbound is vulnerable to arbitrary code execution. The vulnerability exists through an integer overflow in a size calculation in respip/respip.c. A flaw was found in unbound. An integer overflow in ubpackedrrsetkey function may lead to a buffer overflow of the allocated buffer if the size can be...

Updated firefox packages fix security vulnerabilities

Texture upload into an unbound backing buffer resulted in an out-of-bound read. CVE-2021-23981 Angle graphics library out of date. CVE-2021-4127 Internal network hosts could have been probed by a malicious webpage. CVE-2021-23982 Malicious extensions could have spoofed popup information...

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:0966-1)

This update for MozillaFirefox fixes the following issues : Firefox was updated to 78.9.0 ESR MFSA 2021-11, bsc1183942 - CVE-2021-23981: Texture upload into an unbound backing buffer resulted in an out-of-bound read - CVE-2021-23982: Internal network hosts could have been probed by a malicious...

Mozilla: Texture upload into an unbound backing buffer resulted in an out-of-bound read

The Mozilla Foundation Security Advisory describes this issue as: A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in memory corruption and a potentially exploitable information leak or crash...

RHEL 8 : firefox (RHSA-2021:0989)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:0989 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...