![]() ![]() ![]() The zero-day was initially reported on September 6th by Apple's Security Engineering and Architecture (SEAR) team and The Citizen Lab at the University of Toronto's Munk School. Google had already patched this flaw in Chrome after discovering that it was actively exploited. The security updates to fix this zero-day were released for Firefox versions 117.0.1, Firefox ESR 115.2.1, Firefox ESR 102.15.1, Thunderbird 102.15.1, and Thunderbird 115.2.2, and the company strongly advises users to update their Firefox and Thunderbird installations to protect their systems from potential attacks.Īdditionally, the same CVE-2023-4863 vulnerability affects other software that uses the vulnerable WebP code library version, including Google Chrome. 4 5 También se puede instalar a través de un AppImage o mediante la Microsoft Store y el Administrador de paquetes de Windows. 3 Un año después se lanzó una versión creada por la comunidad para Windows. The vulnerability itself, tracked as CVE-2023-4863, is the result of a heap buffer overflow in the WebP code library (libwebp), and this issue can lead to crashes or arbitrary code execution when malicious WebP images are opened - Mozilla acknowledged that this vulnerability has already been exploited in the wild. LibreWolf se lanzó inicialmente para Linux el 7 de marzo de 2020. Mozilla has issued a series of emergency security updates to address a critical zero-day vulnerability affecting the Firefox browser and the Thunderbird email client. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |