Vulnerability CVE-2024-2613: Information
Description
Data was not properly sanitized when decoding a QUIC ACK frame; this could have led to unrestricted memory consumption and a crash. This vulnerability affects Firefox < 124.
Published: March 19, 2024
Modified: March 19, 2024
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
firefox | sisyphus | 124.0-alt1 | 126.0.1-alt1 | ALT-PU-2024-4271-2 | 343190 | Fixed |
firefox | sisyphus_riscv64 | 124.0.1-alt0.port | 126.0-alt0.port | ALT-PU-2024-6052-1 | - | Fixed |
firefox | sisyphus_loongarch64 | 124.0-alt1.0.port | 126.0-alt1.0.port | ALT-PU-2024-4597-1 | - | Fixed |
firefox | p11 | 124.0-alt1 | 126.0.1-alt1 | ALT-PU-2024-4271-2 | 343190 | Fixed |