![]() This memory leak could be used to effect a sandbox escape if the correct data was leaked. In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. #CVE-2023-5170: Memory leak from a privileged process Reporter sonakkbi Impact high Description ![]() #CVE-2023-5169: Out-of-bounds write in PathOps Reporter sonakkbi Impact high DescriptionĪ compromised content process could have provided malicious data in a PathRecording resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This bug only affects Firefox on Windows. #CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1 Reporter sonakkbi Impact high DescriptionĪ compromised content process could have provided malicious data to FilterNodeD2D1 resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. Mozilla Foundation Security Advisory 2023-41 Security Vulnerabilities fixed in Firefox 118 Announced SeptemImpact high Products Firefox Fixed in
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |