Question

话题已存档。如果需要帮助请提出新问题。

CVE-2023-3600

5 个回答
0 人有此问题
1 次查看
最后回复者为 goku

1 年前

sbasic

2023/8/17 20:22

Hi,

regarding vulnerability CVE-2023-3600 when I check advisories it says that version below 115.0.2 ESR are affected. Does that mean that only 115.x versions are affected or all versions are affected like 102.x ?

Regards

Hi, regarding vulnerability CVE-2023-3600 when I check advisories it says that version below 115.0.2 ESR are affected. Does that mean that only 115.x versions are affected or all versions are affected like 102.x ? Regards

Answer 1 · 2023-08-17 20:22:03

James

Top 25 Contributor
Moderator

2023/8/18 09:12

Firefox ESR versions https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/

Firefox Release https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox/

https://www.mozilla.org/en-US/security/advisories/mfsa2023-26/ Says CVE-2023-3600: Use-after-free in workers was fixed in Firefox 115.0.2 Firefox ESR 115.0.2. They would have ported the fix to 102 ESR if it was found vulnerable to this also.

The old Fx 102 ESR channel is coming to an end as 102.15.0 ESR will be the last major update for it.

由James于2023年8月18日 -0700 09:14:57修改

Answer 2 · 2023-08-17 20:22:03

sbasic 提问者

2023/8/20 20:17

ok. thanks. So you are saying that this vulnerability exists also in v102, not just in v115 ?

Answer 3 · 2023-08-17 20:22:03

goku

2023/8/31 02:31

is firefox esr 102 affected by CVE-2023-3600?

Answer 4 · 2023-08-17 20:22:03

cor-el

Moderator
Top 10 Contributor

2023/8/31 02:56

The code that was changed doesn't appear to be present in 102 ESR if I search the HG website, so the 102 ESR branch is likely not affected.

Answer 5 · 2023-08-17 20:22:03

goku

2023/8/31 03:22

thanks cor-el, can you pls share the link? thanks

搜索 | 用户支持

CVE-2023-3600

所有回复 (5)

按产品浏览

按产品浏览

选择产品

按主题浏览所有论坛帖子

获取下列产品帮助

搜索 | 用户支持

CVE-2023-3600

所有回复 (5)