FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

firefox -- Potential memory corruption and exploitable crash

Affected packages
firefox < 128.0,2

Details

VuXML ID 7ade3c38-6d1f-11ef-ae11-b42e991fc52e
Discovery 2024-09-06
Entry 2024-09-07

security@mozilla.org reports:

An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash.

References

CVE Name CVE-2024-7652
URL https://nvd.nist.gov/vuln/detail/CVE-2024-7652