Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-31741HistoryDec 22, 2022 - 8:15 p.m.
CVE-2022-31741
2022-12-2220:15:29
Debian Security Bug Tracker
security-tracker.debian.org
35
cms message
memory corruption
cve-2022-31741
unix
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
51.3%
A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 101.0-1 | firefox_101.0-1_all.deb |
| Debian | 12 | all | firefox-esr | < 91.10.0esr-1 | firefox-esr_91.10.0esr-1_all.deb |
| Debian | 11 | all | firefox-esr | < 91.10.0esr-1~deb11u1 | firefox-esr_91.10.0esr-1~deb11u1_all.deb |
| Debian | 999 | all | firefox-esr | < 91.10.0esr-1 | firefox-esr_91.10.0esr-1_all.deb |
| Debian | 13 | all | firefox-esr | < 91.10.0esr-1 | firefox-esr_91.10.0esr-1_all.deb |
| Debian | 12 | all | thunderbird | < 1:91.10.0-1 | thunderbird_1:91.10.0-1_all.deb |
| Debian | 11 | all | thunderbird | < 1:91.10.0-1~deb11u1 | thunderbird_1:91.10.0-1~deb11u1_all.deb |
| Debian | 999 | all | thunderbird | < 1:91.10.0-1 | thunderbird_1:91.10.0-1_all.deb |
| Debian | 13 | all | thunderbird | < 1:91.10.0-1 | thunderbird_1:91.10.0-1_all.deb |
Related
veracode
veracode
Memory Corruption
2022-06-01 15:18:37
nessus
nessus
SUSE SLES12 Security Update : mozilla-nss (SUSE-SU-2022:2031-1)
2022-06-10 00:00:00
SUSE SLED15 / SLES15 Security Update : mozilla-nss (SUSE-SU-2022:2533-1)
2022-07-23 00:00:00
SUSE SLED15 / SLES15 Security Update : mozilla-nss (SUSE-SU-2022:2595-1)
2022-07-30 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2031-1)
2022-06-10 00:00:00
openSUSE: Security Advisory for mozilla-nss (SUSE-SU-2022:2595-1)
2022-07-30 00:00:00
openSUSE: Security Advisory for mozilla-nss (SUSE-SU-2022:2533-1)
2022-07-23 00:00:00
nvd
nvd
CVE-2022-31741
2022-12-22 20:15:29
cvelist
cvelist
CVE-2022-31741
2022-12-22 00:00:00
cve
cve
CVE-2022-31741
2022-12-22 20:15:29
ubuntucve
ubuntucve
CVE-2022-31741
2022-06-01 00:00:00
prion
prion
Memory corruption
2022-12-22 20:15:00
alpinelinux
alpinelinux
CVE-2022-31741
2022-12-22 20:15:29
redhatcve
redhatcve
CVE-2022-31741
2022-05-31 14:53:05
suse
suse
Security update for mozilla-nss (important)
2022-07-29 00:00:00
Security update for mozilla-nss (important)
2022-07-22 00:00:00
Security update for mozilla-nss (important)
2022-09-01 00:00:00
oraclelinux
oraclelinux
firefox security update
2022-06-02 00:00:00
firefox security update
2022-06-30 00:00:00
firefox security update
2022-06-02 00:00:00
mageia
mageia
Updated firefox/nss/nspr packages fix security vulnerability
2022-06-04 23:25:39
Updated thunderbird packages fix security vulnerability
2022-06-04 23:25:39
redhat
redhat
(RHSA-2022:4870) Important: firefox security update
2022-06-01 14:59:58
(RHSA-2022:4875) Important: firefox security update
2022-06-01 15:01:07
(RHSA-2022:4876) Important: firefox security update
2022-06-01 15:01:54
rocky
rocky
firefox security update
2022-06-01 20:09:36
thunderbird security update
2022-06-02 07:48:48
debian
debian
[SECURITY] [DLA 3040-1] firefox-esr security update
2022-06-03 16:36:45
[SECURITY] [DSA 5156-1] firefox-esr security update
2022-06-01 18:50:55
[SECURITY] [DSA 5158-1] thunderbird security update
2022-06-04 17:52:32
osv
osv
firefox-esr - security update
2022-06-03 00:00:00
Important: firefox security update
2022-06-01 20:09:36
firefox-esr - security update
2022-06-01 00:00:00
centos
centos
firefox security update
2022-08-02 19:45:49
thunderbird security update
2022-08-02 19:48:11
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 91.10 — Mozilla
2022-05-31 00:00:00
Security Vulnerabilities fixed in Thunderbird 91.10 — Mozilla
2022-05-31 00:00:00
Security Vulnerabilities fixed in Firefox 101 — Mozilla
2022-05-31 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 91.10.0-alt1
2022-06-03 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 91.10.0-alt1
2022-06-03 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2022-06-01 00:53:57
[slackware-security] mozilla-thunderbird
2022-06-02 19:43:23
amazon
amazon
Important: thunderbird
2022-07-19 01:23:00
Important: thunderbird
2022-07-19 01:23:00
kaspersky
kaspersky
KLA12546 Multiple vulnerabilities in Mozilla Firefox ESR
2022-05-31 00:00:00
KLA12547 Multiple vulnerabilities in Mozilla Thunderbird
2022-05-31 00:00:00
KLA12545 Multiple vulnerabilities in Mozilla Firefox
2022-05-31 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2022-06-13 00:00:00
Thunderbird vulnerabilities
2022-07-14 00:00:00
ibm
ibm
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2022-08-10 00:00:00
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-10 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
51.3%
Related for DEBIANCVE:CVE-2022-31741