firefox-esr is vulnerable to denial of service. The vulnerability exists due to the lack of memory safety checks in the library, allowing an attacker to crash the application by providing malicious input.

CPENameOperatorVersion
firefox-esr:bullseyeeq78.5.0esr-1
thunderbird:sideq1:78.5.0-1
firefox:sideq81.0-2
firefox:sideq83.0-1
firefox:sideq82.0.3-1
firefox-esr:bustereq78.5.0esr-1~deb10u1
firefox-esr:bustereq68.12.0esr-1~deb10u1
firefox-esr:bustereq78.8.0esr-1~deb10u1
firefox-esr:bustereq78.11.0esr-1~deb10u1
firefox-esr:bustereq78.7.0esr-1~deb10u1

Name	Operator	Version
firefox-esr:bullseye	eq	78.5.0esr-1
thunderbird:sid	eq	1:78.5.0-1
firefox:sid	eq	81.0-2
firefox:sid	eq	83.0-1
firefox:sid	eq	82.0.3-1
firefox-esr:buster	eq	78.5.0esr-1~deb10u1
firefox-esr:buster	eq	68.12.0esr-1~deb10u1
firefox-esr:buster	eq	78.8.0esr-1~deb10u1
firefox-esr:buster	eq	78.11.0esr-1~deb10u1
firefox-esr:buster	eq	78.7.0esr-1~deb10u1

Rows per page:

1-10 of 9241

References

bugzilla.mozilla.org/buglist.cgi?bug_id=1770630%2C1776658

bugzilla.redhat.com/show_bug.cgi?id=2120696

security-tracker.debian.org/tracker/CVE-2022-38478

www.mozilla.org/security/advisories/mfsa2022-33/

www.mozilla.org/security/advisories/mfsa2022-34/

www.mozilla.org/security/advisories/mfsa2022-35/

www.mozilla.org/security/advisories/mfsa2022-36/

www.mozilla.org/security/advisories/mfsa2022-37/

alpinelinux 1

ubuntucve 1

redhatcve 1

nvd 1

cve 1

prion 1

cvelist 1

debiancve 1

nessus 63

openvas 34

suse 3

debian 4

slackware 3

kaspersky 5

osv 12

mozilla 5

mageia 2

redhat 12

almalinux 4

ubuntu 2

rocky 2

oraclelinux 6

altlinux 2

centos 2

gentoo 2

amazon 1

redos 2

ibm 2

securelist 1

photon 1

alpinelinux

CVE-2022-38478

2022-12-22 20:15:37

ubuntucve

CVE-2022-38478

2022-08-24 00:00:00

redhatcve

CVE-2022-38478

2022-08-23 15:10:25

nvd

CVE-2022-38478

2022-12-22 20:15:37

cve

CVE-2022-38478

2022-12-22 20:15:37

prion

Memory corruption

2022-12-22 20:15:00

cvelist

CVE-2022-38478

2022-12-22 00:00:00

debiancve

CVE-2022-38478

2022-12-22 20:15:37

nessus

Debian DSA-5217-1 : firefox-esr - security update

2022-08-25 00:00:00

Mozilla Thunderbird < 91.13

2022-08-23 00:00:00

SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2022:2984-1)

2022-09-02 00:00:00

openvas

Debian: Security Advisory (DLA-3080-1)

2022-08-25 00:00:00

Debian: Security Advisory (DSA-5221-1)

2022-08-31 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:3007-1)

2022-09-05 00:00:00

suse

Security update for MozillaFirefox (important)

2022-09-05 00:00:00

Security update for MozillaThunderbird (important)

2022-09-15 00:00:00

Security update for MozillaFirefox (important)

2022-09-26 00:00:00

debian

[SECURITY] [DSA 5217-1] firefox-esr security update

2022-08-24 19:16:31

[SECURITY] [DLA 3080-1] firefox-esr security update

2022-08-24 20:10:43

[SECURITY] [DSA 5221-1] thunderbird security update

2022-08-29 20:31:19

slackware

[slackware-security] mozilla-firefox

2022-08-23 19:38:49

[slackware-security] mozilla-thunderbird

2022-08-23 19:39:04

SSA-2022-0906204408

2022-09-06 20:44:08

kaspersky

KLA15727 Multiple vulnerabilities in Mozilla Firefox ESR

2022-08-23 00:00:00

KLA15729 Multiple vulnerabilities in Mozilla Thunderbird

2022-08-23 00:00:00

KLA15730 Multiple vulnerabilities in Mozilla Thunderbird

2022-08-23 00:00:00

osv

firefox-esr - security update

2022-08-24 00:00:00

firefox-esr - security update

2022-08-24 00:00:00

thunderbird - security update

2022-08-29 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 91.13 — Mozilla

2022-08-23 00:00:00

Security Vulnerabilities fixed in Thunderbird 91.13 — Mozilla

2022-08-23 00:00:00

Security Vulnerabilities fixed in Firefox ESR 102.2 — Mozilla

2022-08-23 00:00:00

mageia

Updated firefox/nss packages fix security vulnerability

2022-08-26 00:21:07

Updated thunderbird packages fix security vulnerability

2022-08-29 08:07:41

redhat

(RHSA-2022:6178) Important: firefox security update

2022-08-24 17:03:02

(RHSA-2022:6179) Important: firefox security update

2022-08-24 17:04:00

(RHSA-2022:6176) Important: firefox security update

2022-08-24 16:56:47

almalinux

Important: thunderbird security update

2022-08-24 00:00:00

Important: firefox security update

2022-08-24 00:00:00

Important: thunderbird security update

2022-08-24 00:00:00

ubuntu

Firefox vulnerabilities

2022-08-24 00:00:00

Thunderbird vulnerabilities

2022-10-07 00:00:00

rocky

thunderbird security update

2022-08-24 15:28:25

firefox security update

2022-08-24 16:55:47

oraclelinux

thunderbird security update

2022-08-25 00:00:00

firefox security update

2022-08-25 00:00:00

firefox security update

2022-08-25 00:00:00

altlinux

Security fix for the ALT Linux 10 package thunderbird version 102.2.0-alt1

2022-08-24 00:00:00

Security fix for the ALT Linux 10 package firefox-esr version 102.2.0-alt1

2022-08-25 00:00:00

centos

thunderbird security update

2022-09-01 22:01:42

firefox security update

2022-09-01 22:00:44

gentoo

Mozilla Thunderbird: Multiple Vulnerabilities

2022-08-31 00:00:00

Mozilla Firefox: Multiple Vulnerabilities

2022-08-31 00:00:00

amazon

Important: thunderbird

2022-09-30 07:04:00

redos

ROS-20221007-05

2022-10-07 00:00:00

ROS-20221007-04

2022-10-07 00:00:00

ibm

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 102.2ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16 - 2022.4.0

2022-11-15 05:24:36

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud Pak for Multicloud Management Monitoring.

2023-01-31 14:47:39

securelist

IT threat evolution in Q3 2022. Non-mobile statistics

2022-11-18 08:10:34

photon

Critical Photon OS Security Update - PHSA-2023-5.0-0035

2023-06-22 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.002 Low

EPSS

Percentile

58.7%

JSON

Related for VERACODE:36929