Mageia 9: Advisory 2024-0274 Critical: Thunderbird Memory Corruption
mageia
July 21, 2024
Memory corruption in WebGL API
Summary
Memory corruption in WebGL API. (CVE-2024-6600)
Race condition in permission assignment. (CVE-2024-6601)
Memory corruption in thread creation. (CVE-2024-6603)
Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and
Thunderbird 115.13. (CVE-2024-6604)
References
- https://bugs.mageia.org/show_bug.cgi?id=33406
- https://www.thunderbird.net/en-US/thunderbird/115.13.0esr/releasenotes/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-31/
- https://www.cve.org/CVERecord?id=CVE-2024-6600
- https://www.cve.org/CVERecord?id=CVE-2024-6601
- https://www.cve.org/CVERecord?id=CVE-2024-6603
- https://www.cve.org/CVERecord?id=CVE-2024-6604
Resolution
SRPMS
- 9/core/thunderbird-115.13.0-1.mga9
- 9/core/thunderbird-l10n-115.13.0-1.mga9
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 21 Jul 2024
URL: https://advisories.mageia.org/MGASA-2024-0274.html
Type: security
CVE: CVE-2024-6600,
CVE-2024-6601,
CVE-2024-6603,
CVE-2024-6604
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!