[Bug 2061860] Re: Update mozjs115 to 115.10.0

Launchpad Bug Tracker Wed, 17 Apr 2024 13:26:14 -0700

This bug was fixed in the package mozjs115 - 115.10.0-1

---------------
mozjs115 (115.10.0-1) unstable; urgency=high


  * New upstream release (LP: #2061860)
    - CVE-2024-3852: GetBoundName in the JIT returned the wrong object
    - CVE-2024-3854: Out-of-bounds-read after mis-optimized switch statement
    - CVE-2024-3857: Incorrect JITting of arguments led to use-after-free
      during garbage collection

 -- Jeremy Bícha <jbi...@ubuntu.com>  Tue, 16 Apr 2024 07:52:09 -0400

** Changed in: mozjs115 (Ubuntu)
       Status: Fix Committed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-3852

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-3854

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-3857

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2061860

Title:
  Update mozjs115 to 115.10.0

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mozjs115/+bug/2061860/+subscriptions


-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 2061860] Re: Update mozjs115 to 115.10.0

Reply via email to