Mozilla developers and community members Gabriele Svelto, Andrew McCreight, the Mozilla Fuzzing Team, Sean Feng, and Sebastian Hengst reported memory safety bugs present in Firefox 113 and Firefox ESR 102.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2023-19/#CVE-2023-34416
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:3560 https://access.redhat.com/errata/RHSA-2023:3560
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:3561 https://access.redhat.com/errata/RHSA-2023:3561
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:3564 https://access.redhat.com/errata/RHSA-2023:3564
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:3562 https://access.redhat.com/errata/RHSA-2023:3562
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:3567 https://access.redhat.com/errata/RHSA-2023:3567
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:3565 https://access.redhat.com/errata/RHSA-2023:3565
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:3563 https://access.redhat.com/errata/RHSA-2023:3563
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:3566 https://access.redhat.com/errata/RHSA-2023:3566
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:3578 https://access.redhat.com/errata/RHSA-2023:3578
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:3579 https://access.redhat.com/errata/RHSA-2023:3579
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3587 https://access.redhat.com/errata/RHSA-2023:3587
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3589 https://access.redhat.com/errata/RHSA-2023:3589
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:3588 https://access.redhat.com/errata/RHSA-2023:3588
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:3590 https://access.redhat.com/errata/RHSA-2023:3590
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:3596 https://access.redhat.com/errata/RHSA-2023:3596
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:3597 https://access.redhat.com/errata/RHSA-2023:3597
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2023-34416