An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Mozilla

Firefox

Affected Versions:

unspecified

Mozilla

Firefox ESR

Affected Versions:

unspecified

Mozilla

Firefox ESR

Affected Versions:

unspecified

mozilla

firefox

Affected Versions:

mozilla

firefox_esr

Affected Versions:

0 0

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1841368

https://www.mozilla.org/security/advisories/mfsa2023-29/

https://www.mozilla.org/security/advisories/mfsa2023-30/

https://www.mozilla.org/security/advisories/mfsa2023-31/

https://www.debian.org/security/2023/dsa-5464

https://www.debian.org/security/2023/dsa-5469

https://lists.debian.org/debian-lts-announce/2023/08/msg00008.html

https://lists.debian.org/debian-lts-announce/2023/08/msg00010.html

Published: 2023-08-01T14:57:48.886Z

Last Modified: 2025-02-13T17:08:26.207Z

Copied to clipboard!