CVE-2024-3864

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-3864

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3864.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-3864

Downstream

DEBIAN-CVE-2024-3864

DLA-3790-1

DLA-3791-1

DSA-5663-1

DSA-5670-1

OESA-2024-1953

OESA-2025-1265

OESA-2025-1268

RHSA-2024:1904

RHSA-2024:1905

RHSA-2024:1906

RHSA-2024:1907

RHSA-2024:1908

RHSA-2024:1909

RHSA-2024:1910

RHSA-2024:1911

RHSA-2024:1912

RHSA-2024:1934

RHSA-2024:1935

RHSA-2024:1936

RHSA-2024:1937

RHSA-2024:1938

RHSA-2024:1939

RHSA-2024:1940

RHSA-2024:1941

RHSA-2024:1982

SUSE-SU-2024:1319-1

SUSE-SU-2024:1350-1

SUSE-SU-2024:1437-1

SUSE-SU-2024:1676-1

SUSE-SU-2024:1770-1

UBUNTU-CVE-2024-3864

USN-6747-1

USN-6750-1

openSUSE-SU-2024:13884-1

openSUSE-SU-2024:13907-1

openSUSE-SU-2024:14572-1

Related

Published

2024-04-16T16:15:08Z

Modified

2025-08-09T19:01:27Z

Summary

[none]

Details

Memory safety bug present in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

References

Affected packages