Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-4770HistoryMay 14, 2024 - 6:15 p.m.
CVE-2024-4770
2024-05-1418:15:14
Debian Security Bug Tracker
security-tracker.debian.org
23
pdf
font styles
vulnerability
firefox
thunderbird
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
10.3%
When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 126.0-1 | firefox_126.0-1_all.deb |
| Debian | 12 | all | firefox-esr | < 115.11.0esr-1~deb12u1 | firefox-esr_115.11.0esr-1~deb12u1_all.deb |
| Debian | 11 | all | firefox-esr | < 115.11.0esr-1~deb11u1 | firefox-esr_115.11.0esr-1~deb11u1_all.deb |
| Debian | 999 | all | firefox-esr | < 115.11.0esr-1 | firefox-esr_115.11.0esr-1_all.deb |
| Debian | 13 | all | firefox-esr | < 115.11.0esr-1 | firefox-esr_115.11.0esr-1_all.deb |
| Debian | 12 | all | thunderbird | < 1:115.11.0-1~deb12u1 | thunderbird_1:115.11.0-1~deb12u1_all.deb |
| Debian | 11 | all | thunderbird | < 1:115.11.0-1~deb11u1 | thunderbird_1:115.11.0-1~deb11u1_all.deb |
| Debian | 999 | all | thunderbird | < 1:115.11.0-1 | thunderbird_1:115.11.0-1_all.deb |
| Debian | 13 | all | thunderbird | < 1:115.11.0-1 | thunderbird_1:115.11.0-1_all.deb |
Related
osv
osv
CGA-frvj-w4jw-3q6q
2024-06-06 12:25:55
CVE-2024-4770
2024-05-14 18:15:00
Important: firefox security update
2024-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2024-4770
2024-05-14 00:00:00
cve
cve
CVE-2024-4770
2024-05-14 18:15:14
vulnrichment
vulnrichment
CVE-2024-4770
2024-05-14 17:21:24
nvd
nvd
CVE-2024-4770
2024-05-14 18:15:14
cvelist
cvelist
CVE-2024-4770
2024-05-14 17:21:24
redhatcve
redhatcve
CVE-2024-4770
2024-05-14 18:55:07
nessus
nessus
Debian dla-3815 : firefox-esr - security update
2024-05-16 00:00:00
RHEL 8 : firefox (RHSA-2024:3783)
2024-06-10 00:00:00
Debian dsa-5693 : thunderbird - security update
2024-05-17 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3817-1)
2024-05-21 00:00:00
Mageia: Security Advisory (MGASA-2024-0191)
2024-05-22 00:00:00
Mageia: Security Advisory (MGASA-2024-0189)
2024-05-22 00:00:00
almalinux
almalinux
Moderate: firefox security update
2024-06-10 00:00:00
Important: thunderbird security update
2024-05-16 00:00:00
Moderate: thunderbird security update
2024-06-10 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2024-05-20 00:00:00
firefox security update
2024-05-16 00:00:00
thunderbird security update
2024-06-11 00:00:00
redhat
redhat
(RHSA-2024:2913) Important: thunderbird security update
2024-05-20 07:31:47
(RHSA-2024:2912) Important: thunderbird security update
2024-05-20 07:31:21
(RHSA-2024:3338) Moderate: thunderbird security update
2024-05-23 12:00:18
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-05-22 00:00:00
Firefox regressions
2024-05-29 00:00:00
Firefox vulnerabilities
2024-05-21 00:00:00
debian
debian
[SECURITY] [DSA 5691-1] firefox-esr security update
2024-05-15 17:48:47
[SECURITY] [DSA 5693-1] thunderbird security update
2024-05-17 17:04:52
[SECURITY] [DLA 3817-1] thunderbird security update
2024-05-20 08:15:13
kaspersky
kaspersky
KLA67587 Multiple vulnerabilities in Mozilla Firefox ESR
2024-05-14 00:00:00
KLA67450 Multiple vulnerabilities in Mozilla Thunderbird
2024-05-15 00:00:00
KLA67588 Multiple vulnerabilities in Mozilla Firefox
2024-05-14 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2024-06-12 21:36:48
[slackware-security] mozilla-firefox
2024-05-14 19:27:14
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2024-05-22 02:38:02
Updated nss & firefox packages fix security vulnerabilities
2024-05-22 02:17:20
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 115.11 — Mozilla
2024-05-15 00:00:00
Security Vulnerabilities fixed in Firefox ESR 115.11 — Mozilla
2024-05-14 00:00:00
Security Vulnerabilities fixed in Firefox 126 — Mozilla
2024-05-14 00:00:00
rocky
rocky
thunderbird security update
2024-06-14 13:59:30
firefox security update
2024-06-14 13:59:30
thunderbird security update
2024-06-14 14:00:40
amazon
amazon
Important: thunderbird
2024-06-06 20:17:00
ibm
ibm
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
10.3%
Related for DEBIANCVE:CVE-2024-4770