본 사이트는 여러분의 사용자 경험을 개선하기 위해 유지 보수를 진행하는 동안 기능이 제한됩니다. 도움말로 문제가 해결되지 않고 질문을 하고 싶다면 Twitter의 @FirefoxSupport 및 Reddit의 /r/firefox 채널을 활용하세요.

Avatar for Username

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

이 쓰레드는 보존되었습니다. 만약 도움이 필요하시면 새로운 질문을 올려주세요.

CVE-2023-3600

  • 5 답장
  • 0 이 문제를 만남
  • 14 보기
  • 최종 답변자: goku

sbasic
sbasic
more options

Hi,

regarding vulnerability CVE-2023-3600 when I check advisories it says that version below 115.0.2 ESR are affected. Does that mean that only 115.x versions are affected or all versions are affected like 102.x ?

Regards

Hi, regarding vulnerability CVE-2023-3600 when I check advisories it says that version below 115.0.2 ESR are affected. Does that mean that only 115.x versions are affected or all versions are affected like 102.x ? Regards

모든 댓글 (5)

James
James
  • Moderator
  • Top 10 Contributor
more options

Firefox ESR versions https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/

Firefox Release https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox/

https://www.mozilla.org/en-US/security/advisories/mfsa2023-26/ Says CVE-2023-3600: Use-after-free in workers was fixed in Firefox 115.0.2 Firefox ESR 115.0.2. They would have ported the fix to 102 ESR if it was found vulnerable to this also.

The old Fx 102 ESR channel is coming to an end as 102.15.0 ESR will be the last major update for it.

글쓴이 James 수정일시

sbasic
sbasic 질문자
more options

ok. thanks. So you are saying that this vulnerability exists also in v102, not just in v115 ?

goku
goku
more options

is firefox esr 102 affected by CVE-2023-3600?

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

The code that was changed doesn't appear to be present in 102 ESR if I search the HG website, so the 102 ESR branch is likely not affected.

goku
goku
more options

thanks cor-el, can you pls share the link? thanks