Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2023-37211

Memory safety bugs present in Firefox 114, Firefox ESR 102.12, and Thunderbird 102.12. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.

Related bugs and status

CVE-2023-37211 (Candidate) is related to these bugs:

Bug #2026197: Update mozjs102 to 102.13.0

		In	Importance	Status
2026197	Update mozjs102 to 102.13.0	mozjs102 (Ubuntu)	Undecided	Fix Released
2026197	Update mozjs102 to 102.13.0	mozjs102 (Ubuntu Jammy)	Undecided	Fix Released
2026197	Update mozjs102 to 102.13.0	mozjs102 (Ubuntu Kinetic)	Undecided	Fix Released
2026197	Update mozjs102 to 102.13.0	mozjs102 (Ubuntu Lunar)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.mozil...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
MISC: https://www.mozilla.or...
DEBIAN: DSA-5450
MLIST: [debian-lts-announce] ...
DEBIAN: DSA-5451
MLIST: [debian-lts-announce] ...