Security Advisory

CVE-2022-45412

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00

Last updated 2025-04-15 15:05:32

Assigner mozilla

State PUBLISHED

Description

When resolving a symlink such as <code>file:///proc/self/fd/1</code>, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer. <br>*This bug only affects Thunderbird on Unix-based operated systems (Android, Linux, MacOS). Windows is unaffected.*. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.

← Browse all CVEs View on cve.org ↗