Mozilla Addresses Memory Safety Bugs in Firefox, Firefox ESR, and Thunderbird
CVE-2024-9402

Currently unrated

Key Information:

Vendor

Mozilla
Status
Firefox
Firefox Esr
Thunderbird
Vendor
CVE Published:
1 October 2024

What is CVE-2024-9402?

Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Firefox < 131

Firefox ESR < 128.3

Thunderbird < 128.3

References

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1872744%2...
https://www.mozilla.org/security/advisories/mfsa2024-46/
https://www.mozilla.org/security/advisories/mfsa2024-47/

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Andrew Osmond, Sebastian Hengst, Andrew McCreight, Yury Delendik, the Mozilla Fuzzing Team,
JSON
.