Advisories ยป MGASA-2024-0269

Updated nss & firefox packages fix security vulnerabilities

Publication date: 16 Jul 2024
Modification date: 16 Jul 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-6600 , CVE-2024-6601 , CVE-2024-6602 , CVE-2024-6603 , CVE-2024-6604

Description

Memory corruption in WebGL API. (CVE-2024-6600)
Race condition in permission assignment. (CVE-2024-6601)
Memory corruption in NSS. (CVE-2024-6602)
Memory corruption in thread creation. (CVE-2024-6603)
Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and
Thunderbird 115.13. (CVE-2024-6604)
                

References

SRPMS

9/core