Vulnerability CVE-2024-2616: Information
Description
To harden ICU against exploitation, the behavior for out-of-memory conditions was changed to crash instead of attempt to continue. This vulnerability affects Firefox ESR < 115.9 and Thunderbird < 115.9.
Published: March 19, 2024
Modified: March 25, 2024
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
firefox-esr | sisyphus | 115.9.1-alt1 | 115.10.0-alt1 | ALT-PU-2024-4963-2 | 344244 | Fixed |
firefox-esr | sisyphus_loongarch64 | 115.9.1-alt1 | 115.10.0-alt1 | ALT-PU-2024-5937-1 | - | Fixed |
firefox-esr | p10 | 115.9.1-alt1 | 115.10.0-alt1 | ALT-PU-2024-4971-3 | 344254 | Fixed |
firefox-esr | c10f1 | 115.9.1-alt0.c10.1 | 115.9.1-alt0.c10.1 | ALT-PU-2024-6027-2 | 344289 | Fixed |
thunderbird | sisyphus | 115.9.0-alt1 | 115.9.0-alt1 | ALT-PU-2024-4973-2 | 344245 | Fixed |
thunderbird | sisyphus_loongarch64 | 115.9.0-alt1 | 115.9.0-alt1 | ALT-PU-2024-5939-1 | - | Fixed |
thunderbird | p10 | 115.9.0-alt1 | 115.9.0-alt1 | ALT-PU-2024-5117-3 | 344280 | Fixed |
thunderbird | c10f1 | 115.9.0-alt0.c10.1 | 115.9.0-alt0.c10.1 | ALT-PU-2024-6213-2 | 344693 | Fixed |