Security Advisory

CVE-2022-28285

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00

Last updated 2025-04-16 14:03:55

Assigner mozilla

State PUBLISHED

Description

When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

← Browse all CVEs View on cve.org ↗