Bug 2270666 (CVE-2024-2614)
| Summary: | CVE-2024-2614 Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9 | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Mauro Matteo Cascella <mcascell> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | abobrov, erack, gotiwari, jhorak, mvyas, tpopela |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | firefox 115.9, thunderbird 115.9 | Doc Type: | --- |
| Doc Text: |
The Mozilla Foundation Security Advisory describes this flaw as:
Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 2268120 | ||
|
Description
Mauro Matteo Cascella
2024-03-21 10:39:55 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:1483 https://access.redhat.com/errata/RHSA-2024:1483 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:1485 https://access.redhat.com/errata/RHSA-2024:1485 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:1484 https://access.redhat.com/errata/RHSA-2024:1484 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2024:1491 https://access.redhat.com/errata/RHSA-2024:1491 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2024:1490 https://access.redhat.com/errata/RHSA-2024:1490 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:1488 https://access.redhat.com/errata/RHSA-2024:1488 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2024:1487 https://access.redhat.com/errata/RHSA-2024:1487 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:1489 https://access.redhat.com/errata/RHSA-2024:1489 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2024:1499 https://access.redhat.com/errata/RHSA-2024:1499 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:1493 https://access.redhat.com/errata/RHSA-2024:1493 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2024:1495 https://access.redhat.com/errata/RHSA-2024:1495 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2024:1498 https://access.redhat.com/errata/RHSA-2024:1498 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:1494 https://access.redhat.com/errata/RHSA-2024:1494 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:1492 https://access.redhat.com/errata/RHSA-2024:1492 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2024:1486 https://access.redhat.com/errata/RHSA-2024:1486 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:1496 https://access.redhat.com/errata/RHSA-2024:1496 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:1497 https://access.redhat.com/errata/RHSA-2024:1497 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2024:1500 https://access.redhat.com/errata/RHSA-2024:1500 |