Lucene search
Veracode Vulnerability DatabaseVERACODE:46535HistoryApr 19, 2024 - 1:24 a.m.
Out-of-Bounds-Read
2024-04-1901:24:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
firefox
jit compiler
vulnerability
out-of-bounds-read
switch statements
firefox is vulnerable to Out-of-Bounds-Read. The vulnerability is due to incorrect optimization of switch statements by the JIT (Just-In-Time) compiler. It results in code with out-of-bounds-reads in certain code patterns involving switch statements.
References
bugzilla.mozilla.org/show_bug.cgi?id=1884552
lists.debian.org/debian-lts-announce/2024/04/msg00012.html
lists.debian.org/debian-lts-announce/2024/04/msg00013.html
security-tracker.debian.org/tracker/CVE-2024-3854
www.mozilla.org/security/advisories/mfsa2024-18/
www.mozilla.org/security/advisories/mfsa2024-19/
www.mozilla.org/security/advisories/mfsa2024-20/
Related
nvd
nvd
CVE-2024-3854
2024-04-16 16:15:08
debiancve
debiancve
CVE-2024-3854
2024-04-16 16:15:08
vulnrichment
vulnrichment
CVE-2024-3854
2024-04-16 15:14:05
cgr
cgr
CVE-2024-3854 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2024-3854
2024-04-17 19:53:30
ubuntucve
ubuntucve
CVE-2024-3854
2024-04-16 00:00:00
cvelist
cvelist
CVE-2024-3854
2024-04-16 15:14:05
cve
cve
CVE-2024-3854
2024-04-16 16:15:08
rocky
rocky
firefox security update
2024-05-10 14:32:42
firefox security update
2024-05-06 13:04:21
nessus
nessus
AlmaLinux 9 : firefox (ALSA-2024:1908)
2024-04-23 00:00:00
Rocky Linux 8 : firefox (RLSA-2024:1912)
2024-05-06 00:00:00
Oracle Linux 8 : firefox (ELSA-2024-1912)
2024-04-20 00:00:00
osv
osv
Important: firefox security update
2024-04-18 00:00:00
Important: firefox security update
2024-04-18 00:00:00
Important: firefox security update
2024-05-06 13:04:21
almalinux
almalinux
Important: firefox security update
2024-04-18 00:00:00
Important: firefox security update
2024-04-18 00:00:00
oraclelinux
oraclelinux
firefox security update
2024-04-19 00:00:00
firefox security update
2024-04-19 00:00:00
firefox security update
2024-04-18 00:00:00
redhat
redhat
(RHSA-2024:1906) Important: firefox security update
2024-04-18 09:05:27
(RHSA-2024:1908) Important: firefox security update
2024-04-18 09:05:44
(RHSA-2024:1904) Important: firefox security update
2024-04-18 08:52:48
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-04-25 00:00:00
Firefox regressions
2024-05-02 00:00:00
Firefox vulnerabilities
2024-04-24 00:00:00
debian
debian
[SECURITY] [DLA 3790-1] firefox-esr security update
2024-04-19 10:40:02
[SECURITY] [DLA 3791-1] thunderbird security update
2024-04-22 08:49:04
[SECURITY] [DSA 5670-1] thunderbird security update
2024-04-22 07:42:03
openvas
openvas
Ubuntu: Security Advisory (USN-6750-1)
2024-04-26 00:00:00
Mozilla Firefox ESR Security Update (mfsa_2024-19) - Mac OS X
2024-04-17 00:00:00
Debian: Security Advisory (DLA-3790-1)
2024-04-22 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.10 — Mozilla
2024-04-16 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.10 — Mozilla
2024-04-16 00:00:00
Security Vulnerabilities fixed in Firefox 125 — Mozilla
2024-04-16 00:00:00
kaspersky
kaspersky
KLA65640 Multiple vulnerabilities in Mozilla Firefox ESR
2024-04-16 00:00:00
KLA65693 Multiple vulnerabilities in Mozilla Thunderbird
2024-04-16 00:00:00
KLA65639 Multiple vulnerabilities in Mozilla Firefox
2024-04-16 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2024-04-27 03:37:18
Updated firefox packages fix security vulnerabilities
2024-04-27 09:26:16
slackware
slackware
[slackware-security] mozilla-firefox
2024-04-16 18:53:34
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-05-12 00:00:00