Bug 2362915 (CVE-2025-4093)
| Summary: | CVE-2025-4093 firefox: thunderbird: Memory safety bug fixed in Firefox ESR 128.10 and Thunderbird 128.10 | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | erack, gotiwari, jhorak, mvyas, tpopela |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
OSIDB Bzimport
2025-04-29 14:01:47 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:4443 https://access.redhat.com/errata/RHSA-2025:4443 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:4458 https://access.redhat.com/errata/RHSA-2025:4458 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:4460 https://access.redhat.com/errata/RHSA-2025:4460 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2025:4753 https://access.redhat.com/errata/RHSA-2025:4753 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2025:4756 https://access.redhat.com/errata/RHSA-2025:4756 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2025:4751 https://access.redhat.com/errata/RHSA-2025:4751 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2025:4752 https://access.redhat.com/errata/RHSA-2025:4752 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:4797 https://access.redhat.com/errata/RHSA-2025:4797 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:7428 https://access.redhat.com/errata/RHSA-2025:7428 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2025:7506 https://access.redhat.com/errata/RHSA-2025:7506 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2025:7507 https://access.redhat.com/errata/RHSA-2025:7507 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2025:7545 https://access.redhat.com/errata/RHSA-2025:7545 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2025:7547 https://access.redhat.com/errata/RHSA-2025:7547 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2025:7543 https://access.redhat.com/errata/RHSA-2025:7543 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2025:7544 https://access.redhat.com/errata/RHSA-2025:7544 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2025:7693 https://access.redhat.com/errata/RHSA-2025:7693 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2025:7691 https://access.redhat.com/errata/RHSA-2025:7691 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2025:7692 https://access.redhat.com/errata/RHSA-2025:7692 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2025:7690 https://access.redhat.com/errata/RHSA-2025:7690 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2025:7689 https://access.redhat.com/errata/RHSA-2025:7689 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2025:7694 https://access.redhat.com/errata/RHSA-2025:7694 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2025:7695 https://access.redhat.com/errata/RHSA-2025:7695 |