PT-2024-3598 · Mozilla+9 · Thunderbird+11

Ronald Crane

·

Published

2024-04-16

·

Updated

2025-09-22

·

CVE-2024-3859

CVSS v3.1

5.9

Medium

VectorAV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N
Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 125 Firefox ESR versions prior to 115.10 Thunderbird versions prior to 115.10
Description: The issue is related to an integer overflow that leads to an out-of-bounds read, potentially triggered by a malformed OpenType font. This could allow a remote attacker to gain unauthorized access to protected information when processing OpenType fonts.
Recommendations: For Firefox versions prior to 125, update to version 125 or later. For Firefox ESR versions prior to 115.10, update to version 115.10 or later. For Thunderbird versions prior to 115.10, update to version 115.10 or later.

Exploit

Fix

Out of bounds Read

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-190

Related Identifiers

ALSA-2024:1908
ALSA-2024:1912
ALSA-2024:1939
ALSA-2024:1940
ALT-PU-2024-13897
ALT-PU-2024-14442
ALT-PU-2024-14892
ALT-PU-2024-15175
ALT-PU-2024-15839
ALT-PU-2024-15841
ALT-PU-2024-6719
ALT-PU-2024-6721
ALT-PU-2024-6765
ALT-PU-2024-7489
ALT-PU-2024-7685
BDU:2024-03909
CESA-2024_1912
CESA-2024_1939
CVE-2024-3859
DLA-3790-1
DLA-3791-1
DSA-5663-1
DSA-5670-1
MGASA-2024-0151
MGASA-2024-0153
OESA-2024-1786
OESA-2025-1265
OESA-2025-1268
OPENSUSE-SU-2024:13884-1
OPENSUSE-SU-2024:13907-1
OPENSUSE-SU-2024:14572-1
OPENSUSE-SU-2024_1350-1
OPENSUSE-SU-2024_1437-1
OPENSUSE-SU-2024_1770-1
RHSA-2024:1904
RHSA-2024:1905
RHSA-2024:1906
RHSA-2024:1907
RHSA-2024:1908
RHSA-2024:1909
RHSA-2024:1910
RHSA-2024:1911
RHSA-2024:1912
RHSA-2024:1934
RHSA-2024:1935
RHSA-2024:1936
RHSA-2024:1937
RHSA-2024:1938
RHSA-2024:1939
RHSA-2024:1940
RHSA-2024:1941
RHSA-2024:1982
RHSA-2024_1908
RHSA-2024_1910
RHSA-2024_1912
RHSA-2024_1935
RHSA-2024_1939
RHSA-2024_1940
RLSA-2024:1908
RLSA-2024:1912
SUSE-SU-2024:1319-1
SUSE-SU-2024:1350-1
SUSE-SU-2024:1437-1
SUSE-SU-2024:1676-1
SUSE-SU-2024:1770-1
USN-6747-1
USN-6747-2
USN-6750-1

Affected Products

Alt Linux
Almalinux
Centos
Firefox
Firefox Esr
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Thunderbird
Ubuntu