Lucene search
Alpine Linux Development TeamALPINE:CVE-2023-5724HistoryOct 25, 2023 - 6:17 p.m.
CVE-2023-5724
2023-10-2518:17:44
Alpine Linux Development Team
security.alpinelinux.org
10
vulnerability
firefox
thunderbird
large draw calls
crash
cve-2023-5724
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.8%
Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | firefox-esr | < 115.4.0-r0 | UNKNOWN |
| Alpine | edge-community | noarch | firefox | < 119.0-r0 | UNKNOWN |
| Alpine | edge-community | noarch | thunderbird | < 115.4.1-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | firefox-esr | < 115.5.0-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | firefox | < 119.0-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | thunderbird | < 115.4.0-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | firefox-esr | < 115.4.0-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | firefox | < 119.0-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | thunderbird | < 115.4.1-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox-esr | < 115.4.0-r0 | UNKNOWN |
Related
cve
cve
CVE-2023-5724
2023-10-25 18:17:44
debiancve
debiancve
CVE-2023-5724
2023-10-25 18:17:44
nvd
nvd
CVE-2023-5724
2023-10-25 18:17:44
redhatcve
redhatcve
CVE-2023-5724
2023-10-24 18:28:26
prion
prion
Code injection
2023-10-25 18:17:00
cvelist
cvelist
CVE-2023-5724
2023-10-24 12:47:10
ubuntucve
ubuntucve
CVE-2023-5724
2023-10-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-10-27 21:05:30
debian
debian
[SECURITY] [DSA 5535-1] firefox-esr security update
2023-10-25 19:14:08
[SECURITY] [DLA 3637-1] thunderbird security update
2023-10-29 09:05:55
[SECURITY] [DSA 5538-1] thunderbird security update
2023-10-28 12:34:11
nessus
nessus
Debian DSA-5535-1 : firefox-esr - security update
2023-10-25 00:00:00
Debian DSA-5538-1 : thunderbird - security update
2023-10-28 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3637-1)
2023-10-30 00:00:00
Debian: Security Advisory (DSA-5538-1)
2023-10-30 00:00:00
Mageia: Security Advisory (MGASA-2023-0308)
2023-11-07 00:00:00
amazon
amazon
Important: thunderbird
2023-11-09 19:19:00
osv
osv
firefox-esr - security update
2023-10-27 00:00:00
thunderbird - security update
2023-10-29 00:00:00
thunderbird vulnerabilities
2023-11-02 03:30:29
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2023-11-07 02:08:32
Updated nss and firefox packages fix security vulnerabilities
2023-11-07 02:08:32
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-11-02 00:00:00
Firefox vulnerabilities
2023-10-30 00:00:00
Firefox regressions
2023-11-14 00:00:00
oraclelinux
oraclelinux
firefox security update
2023-10-31 00:00:00
thunderbird security update
2023-10-31 00:00:00
thunderbird security update
2023-10-31 00:00:00
redhat
redhat
(RHSA-2023:6185) Important: firefox security update
2023-10-30 16:27:39
(RHSA-2023:6188) Important: firefox security update
2023-10-30 16:31:18
(RHSA-2023:6191) Important: thunderbird security update
2023-10-30 16:35:50
almalinux
almalinux
Important: thunderbird security update
2023-10-30 00:00:00
Important: firefox security update
2023-10-30 00:00:00
Important: thunderbird security update
2023-10-30 00:00:00
rocky
rocky
firefox security update
2023-11-11 23:00:15
slackware
slackware
[slackware-security] mozilla-firefox
2023-10-24 22:27:04
[slackware-security] mozilla-thunderbird
2023-10-26 20:00:50
kaspersky
kaspersky
KLA61569 Multiple vulnerabilities in Mozilla Firefox ESR
2023-10-24 00:00:00
KLA61570 Multiple vulnerabilities in Mozilla Thunderbird
2023-10-24 00:00:00
KLA61568 Multiple vulnerabilities in Mozilla Firefox
2023-10-24 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.4 — Mozilla
2023-10-24 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.4.1 — Mozilla
2023-10-24 00:00:00
Security Vulnerabilities fixed in Firefox 119 — Mozilla
2023-10-24 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.8%
Related for ALPINE:CVE-2023-5724