This bug was fixed in the package mozjs102 - 102.10.0-1
---------------
mozjs102 (102.10.0-1) unstable; urgency=high
* New upstream release (LP: #2015880)
- CVE-2023-29536: Invalid free from JavaScript code
- CVE-2023-29548: Incorrect optimization result on ARM64
- CVE-2023-29550: Memory safety bugs
- CVE-2023-29535: Potential Memory Corruption following Garbage Collector
compaction
-- Jeremy Bícha <jbi...@ubuntu.com> Mon, 10 Apr 2023 19:48:42 -0400
** Changed in: mozjs102 (Ubuntu)
Status: In Progress => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-29535
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-29536
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-29548
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-29550
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to mozjs102 in Ubuntu.
https://bugs.launchpad.net/bugs/2015880
Title:
Update mozjs102 to 102.10.0
Status in mozjs102 package in Ubuntu:
Fix Released
Bug description:
Impact
------
Several security bug fixes
Filing tracker bug since we are late in the Ubuntu 23.04 release cycle
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mozjs102/+bug/2015880/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
