Security Advisory

CVE-2024-2608

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-19 12:02:53

Last updated 2025-03-13 14:40:17

Assigner mozilla

State PUBLISHED

Description

`AppendEncodedAttributeValue(), ExtraSpaceNeededForAttrEncoding()` and `AppendEncodedCharacters()` could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

← Browse all CVEs View on cve.org ↗