Unrated severityNVD Advisory· Published Dec 19, 2023· Updated Feb 13, 2025
CVE-2023-6856
CVE-2023-6856
Description
The WebGL DrawElementsInstanced method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.
Affected products
35- osv-coords32 versionspkg:rpm/almalinux/firefoxpkg:rpm/almalinux/firefox-x11pkg:rpm/almalinux/thunderbirdpkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5
< 115.6.0-1.el8_9.alma+ 31 more
- (no CPE)range: < 115.6.0-1.el8_9.alma
- (no CPE)range: < 115.6.0-1.el9_3.alma
- (no CPE)range: < 115.6.0-1.el9_3.alma
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 121.0-1.1
- (no CPE)range: < 115.6.0-150200.8.142.2
- (no CPE)range: < 115.6.0-1.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150000.150.119.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-112.194.1
- (no CPE)range: < 115.6.0-150000.150.119.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-112.194.1
- (no CPE)range: < 115.6.0-150000.150.119.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-150200.152.120.1
- (no CPE)range: < 115.6.0-112.194.1
- (no CPE)range: < 115.6.0-150200.8.142.2
- (no CPE)range: < 115.6.0-150200.8.142.2
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- bugzilla.mozilla.org/show_bug.cgimitre
- lists.debian.org/debian-lts-announce/2023/12/msg00020.htmlmitre
- lists.debian.org/debian-lts-announce/2023/12/msg00021.htmlmitre
- security.gentoo.org/glsa/202401-10mitre
- www.debian.org/security/2023/dsa-5581mitre
- www.debian.org/security/2023/dsa-5582mitre
- www.mozilla.org/security/advisories/mfsa2023-54/mitre
- www.mozilla.org/security/advisories/mfsa2023-55/mitre
- www.mozilla.org/security/advisories/mfsa2023-56/mitre
News mentions
0No linked articles in our index yet.