Out-of-bounds Read Affecting Firefox package, versions [,128)
Threat Intelligence
EPSS
0.05% (17th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-UNMANAGED-FIREFOX-7444602
- published 12 Jul 2024
- disclosed 9 Jul 2024
- credit pwn2car
Introduced: 9 Jul 2024
CVE-2024-6600 Open this link in a new tabHow to fix?
Upgrade Firefox
to version 128 or higher.
Overview
Affected versions of this package are vulnerable to Out-of-bounds Read due to large allocation checks in Angle for GLSL shaders being too lenient. An attacker can access memory locations outside of the allocated range by allocating more than 8192 ints in private shader memory on macOS.