Puppy Linux Discussion Forum

Discussion, talk and tips
https://forum.puppylinux.com/

Firefox zero day vulnerability

https://forum.puppylinux.com/viewtopic.php?t=12840

Page 1 of 1

Firefox zero day vulnerability

Posted: Sat Oct 12, 2024 3:24 pm
by d-pupp

Firefox zero day vulnerability

Security Vulnerability fixed in Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1

Announced
October 9, 2024
Impact
critical
Products
Firefox, Firefox ESR
Fixed in

Firefox 131.0.2
Firefox ESR 115.16.1
Firefox ESR 128.3.1

#CVE-2024-9680: Use-after-free in Animation timeline

Reporter
Damien Schaeffer from ESET
Impact
critical

Description

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild.
References

Bug 1923344

Re: Firefox zero day vulnerability

Posted: Wed Oct 16, 2024 7:52 pm
by d-pupp

For anyone interested Firefox has patched this vulnerability and it is now available via apt.
The patched version is 128.3.1esr

All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited