vulnerability

Amazon Linux AMI 2: CVE-2023-7104: Security patch for firefox, nss, thunderbird (Multiple Advisories)

Try Surface Command
Back to search
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Dec 29, 2023
Added
Jan 23, 2024
Modified
Jan 28, 2025

Description

A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248999.

Solutions

amazon-linux-ami-2-upgrade-firefoxamazon-linux-ami-2-upgrade-firefox-debuginfoamazon-linux-ami-2-upgrade-nssamazon-linux-ami-2-upgrade-nss-debuginfoamazon-linux-ami-2-upgrade-nss-develamazon-linux-ami-2-upgrade-nss-pkcs11-develamazon-linux-ami-2-upgrade-nss-sysinitamazon-linux-ami-2-upgrade-nss-toolsamazon-linux-ami-2-upgrade-thunderbirdamazon-linux-ami-2-upgrade-thunderbird-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today