Bug 2255370 (CVE-2023-6864)
Summary: | CVE-2023-6864 Mozilla: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Mauro Matteo Cascella <mcascell> |
Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
Status: | NEW --- | QA Contact: | |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | unspecified | CC: | abobrov, erack, jhorak, tpopela |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | firefox 115.6, thunderbird 115.6 | Doc Type: | --- |
Doc Text: |
The Mozilla Foundation Security Advisory describes this flaw as:
Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | Type: | --- | |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 2254313 |
Description
Mauro Matteo Cascella
2023-12-20 11:21:26 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:0001 https://access.redhat.com/errata/RHSA-2024:0001 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2024:0002 https://access.redhat.com/errata/RHSA-2024:0002 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:0004 https://access.redhat.com/errata/RHSA-2024:0004 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:0005 https://access.redhat.com/errata/RHSA-2024:0005 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:0012 https://access.redhat.com/errata/RHSA-2024:0012 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:0011 https://access.redhat.com/errata/RHSA-2024:0011 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:0019 https://access.redhat.com/errata/RHSA-2024:0019 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:0025 https://access.redhat.com/errata/RHSA-2024:0025 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2024:0021 https://access.redhat.com/errata/RHSA-2024:0021 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:0024 https://access.redhat.com/errata/RHSA-2024:0024 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2024:0022 https://access.redhat.com/errata/RHSA-2024:0022 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:0003 https://access.redhat.com/errata/RHSA-2024:0003 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2024:0023 https://access.redhat.com/errata/RHSA-2024:0023 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2024:0026 https://access.redhat.com/errata/RHSA-2024:0026 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2024:0028 https://access.redhat.com/errata/RHSA-2024:0028 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2024:0030 https://access.redhat.com/errata/RHSA-2024:0030 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:0029 https://access.redhat.com/errata/RHSA-2024:0029 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2024:0027 https://access.redhat.com/errata/RHSA-2024:0027 |