High-Severity Memory Corruption Vulnerabilities Patched in Firefox, Chrome


In order to address a number of critical vulnerabilities, including memory corruption problems, Mozilla and Google on Tuesday announced the availability of stable fixes for Firefox and Chrome. The first three vulnerabilities, which were reported by the same security researcher and tracked as CVE-2023-4573, CVE-2023-4574, and CVE-2023-4575, “could have led to a use-after-free causing a potentially exploitable crash,” according to Mozilla’s advisory.

Seven vulnerabilities were patched in Firefox 117 by Mozilla, including four memory corruption bugs that affect the IPC CanvasTranslator, IPC ColorPickerShownCallback, IPC FilePickerShownCallback, and JIT UpdateRegExpStatics components of the browser.

Read More…