CVE-2022-42928
Summary
| CVE | CVE-2022-42928 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-12-22 20:15:00 UTC |
|---|
| Updated | 2023-09-13 11:15:00 UTC |
|---|
| Description | Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4. |
|---|
NVD Known Affected Configurations (CPE 2.3)
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 160158 Oracle Enterprise Linux Security Update for firefox (ELSA-2022-7071)
- 160172 Oracle Enterprise Linux Security Update for firefox (ELSA-2022-7070)
- 160177 Oracle Enterprise Linux Security Update for thunderbird (ELSA-2022-7184)
- 160181 Oracle Enterprise Linux Security Update for thunderbird (ELSA-2022-7178)
- 160183 Oracle Enterprise Linux Security Update for firefox (ELSA-2022-7069)
- 160184 Oracle Enterprise Linux Security Update for thunderbird (ELSA-2022-7190)
- 181149 Debian Security Update for firefox-esr (DSA 5259-1)
- 181150 Debian Security Update for firefox-esr (DLA 3156-1)
- 181169 Debian Security Update for thunderbird (DSA 5262-1)
- 181178 Debian Security Update for thunderbird (DLA 3170-1)
- 183426 Debian Security Update for firefox-esrthunderbird (CVE-2022-42928)
- 199013 Ubuntu Security Notification for Firefox Vulnerabilities (USN-5709-1)
- 199024 Ubuntu Security Notification for Thunderbird Vulnerabilities (USN-5724-1)
- 240762 Red Hat Update for firefox (RHSA-2022:7068)
- 240763 Red Hat Update for firefox (RHSA-2022:7072)
- 240764 Red Hat Update for firefox (RHSA-2022:7071)
- 240765 Red Hat Update for firefox (RHSA-2022:7069)
- 240766 Red Hat Update for firefox (RHSA-2022:7070)
- 240784 Red Hat Update for thunderbird (RHSA-2022:7184)
- 240786 Red Hat Update for thunderbird (RHSA-2022:7190)
- 240787 Red Hat Update for thunderbird (RHSA-2022:7178)
- 240791 Red Hat Update for thunderbird (RHSA-2022:7182)
- 240792 Red Hat Update for thunderbird (RHSA-2022:7181)
- 296098 Oracle Solaris 11.4 Support Repository Update (SRU) 52.132.2 Missing (CPUOCT2022)
- 354131 Amazon Linux Security Advisory for thunderbird : ALAS2-2022-1900
- 356274 Amazon Linux Security Advisory for firefox : ALASFIREFOX-2023-010
- 356488 Amazon Linux Security Advisory for firefox : ALAS2FIREFOX-2023-010
- 377640 Mozilla Firefox ESR Multiple Vulnerabilities (MFSA2022-45)
- 377641 Mozilla Firefox Multiple Vulnerabilities (MFSA2022-44)
- 377689 Mozilla Thunderbird Multiple Vulnerabilities (MFSA2022-46)
- 503451 Alpine Linux Security Update for firefox-esr
- 506059 Alpine Linux Security Update for firefox-esr
- 710673 Gentoo Linux Mozilla Firefox Multiple Vulnerabilities (GLSA 202210-34)
- 710676 Gentoo Linux Mozilla Thunderbird Multiple Vulnerabilities (GLSA 202210-35)
- 752710 SUSE Enterprise Linux Security Update for MozillaFirefox (SUSE-SU-2022:3698-1)
- 752713 SUSE Enterprise Linux Security Update for MozillaFirefox (SUSE-SU-2022:3719-1)
- 752720 SUSE Enterprise Linux Security Update for MozillaFirefox (SUSE-SU-2022:3726-1)
- 752832 SUSE Enterprise Linux Security Update for MozillaThunderbird (SUSE-SU-2022:4085-1)
- 940702 AlmaLinux Security Update for firefox (ALSA-2022:7070)
- 940706 AlmaLinux Security Update for firefox (ALSA-2022:7071)
- 940708 AlmaLinux Security Update for thunderbird (ALSA-2022:7190)
- 940711 AlmaLinux Security Update for thunderbird (ALSA-2022:7178)
- 960409 Rocky Linux Security Update for firefox (RLSA-2022:7070)
