Update mozjs115 to 115.10.0
Bug #2061860 reported by
Jeremy Bícha
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mozjs115 (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
Includes some security fixes
The build is fairly quick and the autopkgtest burden should be minimal, probably just gjs.
tags: | added: upgrade-software-version |
description: | updated |
Changed in mozjs115 (Ubuntu): | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
This bug was fixed in the package mozjs115 - 115.10.0-1
---------------
mozjs115 (115.10.0-1) unstable; urgency=high
* New upstream release (LP: #2061860)
- CVE-2024-3852: GetBoundName in the JIT returned the wrong object
- CVE-2024-3854: Out-of-bounds-read after mis-optimized switch statement
- CVE-2024-3857: Incorrect JITting of arguments led to use-after-free
during garbage collection
-- Jeremy Bícha <email address hidden> Tue, 16 Apr 2024 07:52:09 -0400