Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox ESR 资源管理错误漏洞
Vulnerability Description
Mozilla Firefox ESR是美国Mozilla基金会的Firefox(Web浏览器)的一个延长支持版本。 Mozilla Firefox ESR存在资源管理错误漏洞,该漏洞源于在wasm实例调用中正确记录活动指针的位置失败,导致在调用中发生GC,而没有跟踪那些活动指针。这可能会导致使用后无导致潜在的利用崩溃。此漏洞影响雷鸟< 91.4.0,Firefox ESR < 91.4.0和Firefox < 95。
CVSS Information
N/A
Vulnerability Type
N/A