Lucene search
MozillaCVELIST:CVE-2022-38476HistoryDec 22, 2022 - 12:00 a.m.
CVE-2022-38476
2022-12-2200:00:00
mozilla
www.cve.org
1
data race
pk11_changepw
use-after-free
vulnerability
firefox
thunderbird
A data race could occur in the <code>PK11_ChangePW</code> function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR < 102.2 and Thunderbird < 102.2.
CNA Affected
[
{
"vendor": "Mozilla",
"product": "Firefox ESR",
"versions": [
{
"version": "unspecified",
"lessThan": "102.2",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Thunderbird",
"versions": [
{
"version": "unspecified",
"lessThan": "102.2",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
alpinelinux
alpinelinux
CVE-2022-38476
2022-12-22 20:15:37
redhatcve
redhatcve
CVE-2022-38476
2022-08-23 14:41:31
debiancve
debiancve
CVE-2022-38476
2022-12-22 20:15:37
veracode
veracode
Use-After-Free
2022-09-04 11:46:30
prion
prion
Design/Logic Flaw
2022-12-22 20:15:00
nvd
nvd
CVE-2022-38476
2022-12-22 20:15:37
cve
cve
CVE-2022-38476
2022-12-22 20:15:37
ubuntucve
ubuntucve
CVE-2022-38476
2022-08-25 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2022-249-01)
2022-09-07 00:00:00
CentOS: Security Advisory for firefox (CESA-2022:6179)
2022-09-02 00:00:00
Mozilla Firefox ESR Security Advisory (MFSA2022-34) - Mac OS X
2022-08-25 00:00:00
nessus
nessus
Mozilla Firefox ESR < 102.2
2022-08-23 00:00:00
Oracle Linux 7 : thunderbird (ELSA-2022-6169)
2022-08-24 00:00:00
slackware
slackware
SSA-2022-0906204408
2022-09-06 20:44:08
redhat
redhat
(RHSA-2022:6178) Important: firefox security update
2022-08-24 17:03:02
(RHSA-2022:6179) Important: firefox security update
2022-08-24 17:04:00
(RHSA-2022:6176) Important: firefox security update
2022-08-24 16:56:47
osv
osv
Important: thunderbird security update
2022-08-24 15:28:25
Important: firefox security update
2022-08-24 00:00:00
Important: firefox security update
2022-08-24 16:55:47
kaspersky
kaspersky
KLA15730 Multiple vulnerabilities in Mozilla Thunderbird
2022-08-23 00:00:00
KLA15728 Multiple vulnerabilities in Mozilla Firefox ESR
2022-08-23 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 102.2 — Mozilla
2022-08-23 00:00:00
Security Vulnerabilities fixed in Thunderbird 102.2 — Mozilla
2022-08-23 00:00:00
almalinux
almalinux
Important: thunderbird security update
2022-08-24 00:00:00
Important: firefox security update
2022-08-24 00:00:00
Important: firefox security update
2022-08-24 00:00:00
rocky
rocky
thunderbird security update
2022-08-24 15:28:25
firefox security update
2022-08-24 16:55:47
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 102.2.0-alt1
2022-08-25 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 102.2.0-alt1
2022-08-24 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2022-08-25 00:00:00
thunderbird security update
2022-08-25 00:00:00
thunderbird security update
2022-08-25 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-31 00:00:00
Mozilla Firefox: Multiple Vulnerabilities
2022-08-31 00:00:00
centos
centos
thunderbird security update
2022-09-01 22:01:42
firefox security update
2022-09-01 22:00:44
amazon
amazon
Important: thunderbird
2022-09-30 07:04:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2022-10-07 00:00:00
redos
redos
ROS-20221007-05
2022-10-07 00:00:00
ROS-20221007-04
2022-10-07 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2022-09-15 00:00:00
Security update for MozillaFirefox (important)
2022-09-26 00:00:00
ibm
ibm
securelist
securelist
IT threat evolution in Q3 2022. Non-mobile statistics
2022-11-18 08:10:34