Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2023-25735

Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment resulting in a use-after-free after unwrapping the proxy. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.

Related bugs and status

CVE-2023-25735 (Candidate) is related to these bugs:

Bug #2018905: Update mozjs102 to 102.11.0

		In	Importance	Status
2018905	Update mozjs102 to 102.11.0	mozjs102 (Ubuntu)	Undecided	Fix Released
2018905	Update mozjs102 to 102.11.0	mozjs102 (Ubuntu Lunar)	Undecided	Fix Released
2018905	Update mozjs102 to 102.11.0	mozjs102 (Ubuntu Jammy)	Undecided	Fix Released
2018905	Update mozjs102 to 102.11.0	mozjs102 (Ubuntu Kinetic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.mozil...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...