Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially exploitable crash. *Note: this issue only affects Firefox on ARM64 platforms.* This vulnerability affects Firefox ESR < 68.10, Firefox < 78, and Thunderbird < 68.10.0.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HCanonical Ubuntu
OSCanonical16.0418.0419.1020.04Mozilla Firefox
APPMozilla< 78.0Mozilla Firefox Esr
APPMozilla< 68.10.0Mozilla Thunderbird
APPMozilla< 68.10.0Opensuse Leap
OSOpensuse15.115.2
Powiązane podatności
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
Use-after-free w Animation timelines Firefox/Thunderbird — RCE
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escap...
It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debia...
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the...