Vulnerability CVE-2024-3862: Information
Description
The MarkStack assignment operator, part of the JavaScript engine, could access uninitialized memory if it were used in a self-assignment. This vulnerability affects Firefox < 125.
Published: April 16, 2024
Modified: April 17, 2024
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
firefox | sisyphus | 125.0.1-alt1 | 125.0.3-alt1 | ALT-PU-2024-6765-2 | 345346 | Fixed |
firefox | sisyphus_loongarch64 | 125.0.1-alt1.0.port | 125.0.3-alt1.0.port | ALT-PU-2024-7109-1 | - | Fixed |