Ubuntu update for mozjs102

1) Use-after-free

EUVDB-ID: #VU72251

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-25735

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in SpiderMonkey when in the way cross-compartment wrappers wrapping a scripted proxy. A remote attacker can execute arbitrary code on the target system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:ubuntu:22.04:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:ubuntu:22.10:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:ubuntu:23.04:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU72254

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-25739

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in mozilla::dom::ScriptLoadContext::~ScriptLoadContext(). Module load requests that failed were not being checked as to whether or not they were cancelled in ScriptLoadContext. A remote attacker can trick the victim to visit a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Code Injection

EUVDB-ID: #VU73670

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-25751

CWE-ID: CWE-94 - Improper Control of Generation of Code ('Code Injection')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to improper input validation when invalidating JIT code while following an iterator. A remote attacker can trick the victim to visit a specially crafted website and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Buffer overflow

EUVDB-ID: #VU74825

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-29535

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error during Garbage Collector compaction. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Release of invalid pointer or reference

EUVDB-ID: #VU74826

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-29536

CWE-ID: CWE-763 - Release of invalid pointer or reference

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to an invalid free operation from JavaScript code. A remote attacker can trick the victim to visit a specially crafted web page, trigger memory corruption and execute arbitrary code.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Processor optimization removal or modification of security-critical code

EUVDB-ID: #VU74838

Risk: Low

CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-29548

CWE-ID: CWE-1037 - Processor optimization removal or modification of security-critical code

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to usage of a wrong lowering instruction in the ARM64 Ion compiler. A remote attacker can gain access to sensitive information.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Buffer overflow

EUVDB-ID: #VU74840

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-29550

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when parsing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Type Confusion

EUVDB-ID: #VU75880

Risk: Low

CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-32211

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a type confusion error when processing HTML content. A remote attacker can trick the victim to open a specially crafted website, trigger a type confusion error and crash the browser.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Buffer overflow

EUVDB-ID: #VU75884

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-32215

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can trick the victim to open a specially crafted website, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected package mozjs102 to the latest version.

Vulnerable software versions

Ubuntu: 22.04 - 23.04

libmozjs-102-0 (Ubuntu package): before 102.11.0-0ubuntu0.22.04.1

CPE2.3

• cpe:2.3:o:canonical:libmozjs-102-0_ubuntu_package:*:*:*:*:*:ubuntu:*:*

External links

http://ubuntu.com/security/notices/USN-6120-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.