CVE-2022-22740
published 2022-12-22CVE-2022-22740: Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially…
PriorityP344high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
0.96%
57.1th percentile
Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 96.0-1 (sid) | firefox 96.0-1 (sid) |
| debian | firefox-esr | < firefox 96.0-1 (sid) | firefox 96.0-1 (sid) |
| debian | thunderbird | < firefox 96.0-1 (sid) | firefox 96.0-1 (sid) |
| mozilla | firefox | < 96.0 | 96.0 |
| mozilla | firefox | — | — |
| mozilla | firefox | >= unspecified < 96 | 96 |
| mozilla | firefox_esr | < 91.5 | 91.5 |
| mozilla | firefox_esr | >= unspecified < 91.5 | 91.5 |
| mozilla | thunderbird | < 91.5 | 91.5 |
| mozilla | thunderbird | >= 0 < 1:91.5.0-2~deb11u1 | 1:91.5.0-2~deb11u1 |
| mozilla | thunderbird | >= 0 < 1:91.5.0-1 | 1:91.5.0-1 |
| mozilla | thunderbird | >= 0 < 1:91.5.0-1 | 1:91.5.0-1 |
| mozilla | thunderbird | >= 0 < 1:91.5.0-1 | 1:91.5.0-1 |
| mozilla | thunderbird | >= 0 < 1:91.5.0+build1-0ubuntu0.18.04.1 | 1:91.5.0+build1-0ubuntu0.18.04.1 |
| mozilla | thunderbird | >= 0 < 1:91.5.0+build1-0ubuntu0.20.04.1 | 1:91.5.0+build1-0ubuntu0.20.04.1 |
| mozilla | thunderbird | >= unspecified < 91.5 | 91.5 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
vendor_ubuntu8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
CVE-2022-22740: Certain network request objects were freed too early when releasing a network request handle
osv·2022-12-22·CVSS 8.8
CVE-2022-22740 [HIGH] CVE-2022-22740: Certain network request objects were freed too early when releasing a network request handle
Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.
GHSA
GHSA-5hrv-4r6h-jgxc: Certain network request objects were freed too early when releasing a network request handle
ghsa_unreviewed·2022-12-22
CVE-2022-22740 [HIGH] CWE-416 GHSA-5hrv-4r6h-jgxc: Certain network request objects were freed too early when releasing a network request handle
Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.
OSV
thunderbird vulnerabilities
osv·2022-01-21·CVSS 8.8
CVE-2021-4129 [HIGH] thunderbird vulnerabilities
thunderbird vulnerabilities
Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, trick a user into accepting unwanted
permissions, conduct header splitting attacks, conduct spoofing attacks,
bypass security restrictions, confuse the user, or execute arbitrary code.
(CVE-2021-4129, CVE-2021-4140, CVE-2021-29981, CVE-2021-29982,
CVE-2021-29987, CVE-2021-29991, CVE-2021-38495, CVE-2021-38496,
CVE-2021-38497, CVE-2021-38498, CVE-2021-38500, CVE-2021-38501,
CVE-2021-38503, CVE-2021-38504, CVE-2021-38506, CVE-2021-38507,
CVE-2021-38508, CVE-2021-38509, CVE-2021-43534, CVE-2021-43535,
CVE-2021-43536, CVE
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2022-01-21·CVSS 6.5
CVE-2021-4140 [MEDIUM] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, conduct spoofing attacks, bypass security
restrictions, or execute arbitrary code. (CVE-2021-4129, CVE-2021-4140,
CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539,
CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43545,
CVE-2021-43656, CVE-2022-22737, CVE-2022-22738, CVE-2022-22739,
CVE-2022-22740, CVE-2022-22741, CVE-2022-22742, CVE-2022-22743,
CVE-2022-22745, CVE-2022-22747, CVE-2022-22748, CVE-2022-22751)
It was discovered th
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2022-01-21·CVSS 8.8
CVE-2022-22742 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
Multiple security issues were discovered in Thunderbird. If a user were
tricked into opening a specially crafted website in a browsing context, an
attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, trick a user into accepting unwanted
permissions, conduct header splitting attacks, conduct spoofing attacks,
bypass security restrictions, confuse the user, or execute arbitrary code.
(CVE-2021-4129, CVE-2021-4140, CVE-2021-29981, CVE-2021-29982,
CVE-2021-29987, CVE-2021-29991, CVE-2021-38495, CVE-2021-38496,
CVE-2021-38497, CVE-2021-38498, CVE-2021-38500, CVE-2021-38501,
CVE-2021-38503, CVE-2021-38504, CVE-2021-38506, CVE-2021-38507,
CVE-2021-38508,
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2022-01-13
CVE-2022-22742 Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, spoof the browser
UI, bypass security restrictions, obtain sensitive information across
domains, or execute arbitrary code.
Instructions: After a standard system update you need to restart Firefox to make
all the necessary changes.
Red Hat
Mozilla: Use-after-free of ChannelEventQueue::mOwner
vendor_redhat·2022-01-11·CVSS 8.8
CVE-2022-22740 [HIGH] CWE-416 Mozilla: Use-after-free of ChannelEventQueue::mOwner
Mozilla: Use-after-free of ChannelEventQueue::mOwner
Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.
The Mozilla Foundation Security Advisory describes this flaw as:
Certain network request objects were freed too early when releasing a network request handle. This could have led to a use-after-free issue, causing a potentially exploitable crash.
Statement: Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.
Package: firefox (Red Hat Enterprise Linux 6) - Out of support scope
Package: thunderbird (Red Hat Enterpri
Debian
CVE-2022-22740: firefox - Certain network request objects were freed too early when releasing a network re...
vendor_debian·2022·CVSS 8.8
CVE-2022-22740 [HIGH] CVE-2022-22740: firefox - Certain network request objects were freed too early when releasing a network re...
Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.
Scope: local
sid: resolved (fixed in 96.0-1)
Mozilla
Mozilla Foundation Security Advisory 2022-02: CVE-2022-22740
vendor_mozilla·CVSS 8.8
CVE-2022-22740 [HIGH] Mozilla Foundation Security Advisory 2022-02: CVE-2022-22740
Mozilla Foundation Security Advisory 2022-02
CVE: CVE-2022-22740
Product: Firefox ESR
Impact: high
Fixed in: Firefox ESR 91.5
Mozilla
Mozilla Foundation Security Advisory 2022-03: CVE-2022-22740
vendor_mozilla·CVSS 8.8
CVE-2022-22740 [HIGH] Mozilla Foundation Security Advisory 2022-03: CVE-2022-22740
Mozilla Foundation Security Advisory 2022-03
CVE: CVE-2022-22740
Product: Thunderbird
Impact: high
Fixed in: Thunderbird 91.5
Mozilla
Mozilla Foundation Security Advisory 2022-01: CVE-2022-22740
vendor_mozilla·CVSS 8.8
CVE-2022-22740 [HIGH] Mozilla Foundation Security Advisory 2022-01: CVE-2022-22740
Mozilla Foundation Security Advisory 2022-01
CVE: CVE-2022-22740
Product: Firefox
Impact: moderate
Fixed in: Firefox 96
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://bugzilla.mozilla.org/show_bug.cgi?id=1742334https://www.mozilla.org/security/advisories/mfsa2022-01/https://www.mozilla.org/security/advisories/mfsa2022-02/https://www.mozilla.org/security/advisories/mfsa2022-03/https://bugzilla.mozilla.org/show_bug.cgi?id=1742334https://www.mozilla.org/security/advisories/mfsa2022-01/https://www.mozilla.org/security/advisories/mfsa2022-02/https://www.mozilla.org/security/advisories/mfsa2022-03/
2022-12-22
Published