CVE-2024-6602 | THREATINT

Description

A mismatch between allocator and deallocator could have led to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.

PUBLISHED Reserved 2024-07-09 | Published 2024-07-09 | Updated 2025-11-03 | Assigner mozilla

Product status

Any version before 128

affected

Any version before 115.13

affected

Any version before 115.13

affected

Any version before 128

affected

Credits

Ronald Crane

References

bugzilla.mozilla.org/show_bug.cgi?id=1895032

www.mozilla.org/security/advisories/mfsa2024-29/

www.mozilla.org/security/advisories/mfsa2024-30/

www.mozilla.org/security/advisories/mfsa2024-31/

www.mozilla.org/security/advisories/mfsa2024-32/

lists.debian.org/debian-lts-announce/2024/10/msg00028.html

bugzilla.mozilla.org/show_bug.cgi?id=1895032

www.mozilla.org/security/advisories/mfsa2024-29/

www.mozilla.org/security/advisories/mfsa2024-30/

www.mozilla.org/security/advisories/mfsa2024-31/

www.mozilla.org/security/advisories/mfsa2024-32/

cve.org (CVE-2024-6602)

nvd.nist.gov (CVE-2024-6602)

Download JSON