vulnerability
Alma Linux: CVE-2022-46881: Important: firefox security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Dec 15, 2022 | Dec 19, 2022 | Mar 31, 2026 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Dec 15, 2022
Added
Dec 19, 2022
Modified
Mar 31, 2026
Description
An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash.
*Note*: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 106. This vulnerability affects Firefox < 106, Firefox ESR < 102.6, and Thunderbird < 102.6.
Solutions
alma-upgrade-firefoxalma-upgrade-thunderbird
References
- CVE-2022-46881
- https://attackerkb.com/topics/CVE-2022-46881
- CWE-787
- EUVD-EUVD-2022-49661
- https://errata.almalinux.org/8/ALSA-2022-9067.html
- https://errata.almalinux.org/8/ALSA-2022-9074.html
- https://errata.almalinux.org/9/ALSA-2022-9065.html
- https://errata.almalinux.org/9/ALSA-2022-9080.html
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-49661
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.