Security Advisory

CVE-2024-3859

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-16 15:14:07

Last updated 2024-08-01 20:26:56

Assigner mozilla

State PUBLISHED

Description

On 32-bit versions there were integer-overflows that led to an out-of-bounds-read that potentially could be triggered by a malformed OpenType font. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

← Browse all CVEs View on cve.org ↗