Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2024-3854

In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

Related bugs and status

CVE-2024-3854 (Candidate) is related to these bugs:

Bug #2061860: Update mozjs115 to 115.10.0

Summary				In	Importance	Status
	2061860	Update mozjs115 to 115.10.0		mozjs115 (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.mozil...
MISC: https://lists.debian.o...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
MLIST: [debian-lts-announce] ...