VDB

GCVE-110-MAGEIA-2023-266

GCVE-110-MAGEIA-2023-266
Advisory Published
Vulnetix · Advisory published September 24, 2023
Use-after-free in workers. (CVE-2023-3600) File Extension Spoofing using the Text Direction Override Character. (CVE-2023-3417) Offscreen Canvas could have bypassed cross-origin restrictions. (CVE-2023-4045) Incorrect value used during WASM compilation. (CVE-2023-4046) Potential permissions request bypass via clickjacking. (CVE-2023-4047) Crash in DOMParser due to out-of-memory conditions. (CVE-2023-4048) Fix potential race conditions when releasing platform objects. (CVE-2023-4049) Stack buffer overflow in StorageManager. (CVE-2023-4050) Cookie jar overflow caused unexpected cookie jar state. (CVE-2023-4055) Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14. (CVE-2023-4056) Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. (CVE-2023-4057) Memory corruption in IPC CanvasTranslator. (CVE-2023-4573) Memory corruption in IPC ColorPickerShownCallback. (CVE-2023-4574) Memory corruption in IPC FilePickerShownCallback. (CVE-2023-4575) Integer Overflow in RecordedSourceSurfaceCreation. (CVE-2023-4576) Memory corruption in JIT UpdateRegExpStatics. (CVE-2023-4577) Full screen notification obscured by file open dialog. (CVE-2023-4051) Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception. (CVE-2023-4578) Full screen notification obscured by external program. (CVE-2023-4053) Push notifications saved to disk unencrypted. (CVE-2023-4580) XLL file extensions were downloadable without warnings. (CVE-2023-4581) Browsing Context potentially not cleared when closing Private Window. (CVE-2023-4583) Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2. (CVE-2023-4584) Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. (CVE-2023-4585) Heap buffer overflow in libwebp. (CVE-2023-4863)

Affected Products

VendorProductVersionsPlatforms
Mageiathunderbird-l10n0 (affected), 102.15.1-1.mga8 (unaffected)
Mageiafirefox-l10n0 (affected), 102.15.1-1.mga8 (unaffected)
Mageiafirefox0 (affected), 115.2.1-1.mga9 (unaffected)
Mageiafirefox-l10n0 (affected), 115.2.1-1.mga9 (unaffected)
Mageiarootcerts20230720.00-1.mga9 (unaffected), 0 (affected)
Mageiathunderbird102.15.1-1.mga8 (unaffected), 0 (affected)
Mageiafirefox0 (affected), 102.15.1-1.mga8 (unaffected)
Mageianss0 (affected), 3.93.0-1.mga9 (unaffected)
Mageiathunderbird0 (affected), 115.2.2-1.mga9 (unaffected)
Mageiarootcerts0 (affected), 20230720.00-1.mga8 (unaffected)
Mageianss0 (affected), 3.93.0-1.mga8 (unaffected)
Mageiathunderbird-l10n0 (affected), 115.2.2-1.mga9 (unaffected)

References

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›