REDHAT-BUG-2343752
First published: Tue Feb 04 2025(Updated: )
Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | <135 | |
| Firefox ESR | <115.20<128.7 | |
| Thunderbird | <135<128.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2025:1066
- https://access.redhat.com/errata/RHSA-2025:1133
- https://access.redhat.com/errata/RHSA-2025:1135
- https://access.redhat.com/errata/RHSA-2025:1138
- https://access.redhat.com/errata/RHSA-2025:1136
- https://access.redhat.com/errata/RHSA-2025:1132
- https://access.redhat.com/errata/RHSA-2025:1137
- https://access.redhat.com/errata/RHSA-2025:1139
- https://access.redhat.com/errata/RHSA-2025:1140
- https://access.redhat.com/errata/RHSA-2025:1184
- https://access.redhat.com/errata/RHSA-2025:1283
- https://access.redhat.com/errata/RHSA-2025:1292
- https://access.redhat.com/errata/RHSA-2025:1319
- https://access.redhat.com/errata/RHSA-2025:1317
- https://access.redhat.com/errata/RHSA-2025:1318
- https://access.redhat.com/errata/RHSA-2025:1339
- https://access.redhat.com/errata/RHSA-2025:1340
- https://access.redhat.com/errata/RHSA-2025:1341
- https://access.redhat.com/errata/RHSA-2025:1348
- https://bugzilla.redhat.com/show_bug.cgi?id=2343752
Frequently Asked Questions
What is the severity of REDHAT-BUG-2343752?
REDHAT-BUG-2343752 has a high severity due to the potential for memory corruption and arbitrary code execution.
How do I fix REDHAT-BUG-2343752?
To fix REDHAT-BUG-2343752, you should update affected software to the latest version available.
Which software versions are affected by REDHAT-BUG-2343752?
Affected software versions include Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, and their respective lower versions.
What types of vulnerabilities does REDHAT-BUG-2343752 include?
REDHAT-BUG-2343752 includes memory safety bugs that can lead to memory corruption.
Can REDHAT-BUG-2343752 be exploited remotely?
Yes, with enough effort, the vulnerabilities in REDHAT-BUG-2343752 could potentially be exploited remotely to execute arbitrary code.
- agent/source
- agent/severity
- agent/first-publish-date
- agent/description
- agent/type
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2025-1016
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/mozilla
- canonical/firefox
- canonical/firefox esr
- canonical/thunderbird