CVE-2024-3859

Published: 2024-04-16T16:15Z

Last Modified: 2025-04-01T14:22Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

On 32-bit versions there were integer-overflows that led to an out-of-bounds-read that potentially could be triggered by a malformed OpenType font. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt