Forum
CVE-2023-25737 - Thunderbird, Firefox
Zitat von MITs Forum am 2. Juni 2023, 0:00 UhrAn invalid downcast from
nsTextNode
toSVGElement
could have lead to undefined behavior. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.References
https://bugzilla.mozilla.org/show_bug.cgi?id=1811464
https://www.mozilla.org/security/advisories/mfsa2023-05/
https://www.mozilla.org/security/advisories/mfsa2023-06/
https://www.mozilla.org/security/advisories/mfsa2023-07/
An invalid downcast from nsTextNode
to SVGElement
could have lead to undefined behavior. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1811464
https://www.mozilla.org/security/advisories/mfsa2023-05/
https://www.mozilla.org/security/advisories/mfsa2023-06/
https://www.mozilla.org/security/advisories/mfsa2023-07/