Bug 2236084 (CVE-2023-4584)
Summary: | CVE-2023-4584 Mozilla: Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2 | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Dhananjay Arunesh <darunesh> |
Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
Status: | NEW --- | QA Contact: | |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | unspecified | CC: | abobrov, desktop-qa-list, erack, jhorak, nobody, stransky, tpopela |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | firefox 115.2, thunderbird 115.2 | Doc Type: | --- |
Doc Text: |
The Mozilla Foundation Security Advisory describes this flaw as:
Memory safety bugs present in Firefox 116, Firefox ESR 102.14, Firefox ESR 115.1, Thunderbird 102.14, and Thunderbird 115.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | Type: | --- | |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2234841, 2234842, 2234843, 2234844, 2234845, 2234846, 2234847, 2234848, 2234849, 2234850, 2234853, 2234854, 2234855, 2234856, 2234857, 2234858, 2234859, 2234860, 2234861, 2234862, 2234864, 2234865 | ||
Bug Blocks: | 2234838 |
Description
Dhananjay Arunesh
2023-08-30 09:47:48 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:4950 https://access.redhat.com/errata/RHSA-2023:4950 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:4947 https://access.redhat.com/errata/RHSA-2023:4947 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4951 https://access.redhat.com/errata/RHSA-2023:4951 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4946 https://access.redhat.com/errata/RHSA-2023:4946 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:4949 https://access.redhat.com/errata/RHSA-2023:4949 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:4948 https://access.redhat.com/errata/RHSA-2023:4948 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:4945 https://access.redhat.com/errata/RHSA-2023:4945 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:4958 https://access.redhat.com/errata/RHSA-2023:4958 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:4955 https://access.redhat.com/errata/RHSA-2023:4955 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:4959 https://access.redhat.com/errata/RHSA-2023:4959 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:4953 https://access.redhat.com/errata/RHSA-2023:4953 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4957 https://access.redhat.com/errata/RHSA-2023:4957 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4956 https://access.redhat.com/errata/RHSA-2023:4956 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:4952 https://access.redhat.com/errata/RHSA-2023:4952 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:4954 https://access.redhat.com/errata/RHSA-2023:4954 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:5019 https://access.redhat.com/errata/RHSA-2023:5019 |