DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-3302

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-3302

CGA ID

CGA-7pvm-369p-x5vq

Description

There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server could abuse this to create an Out of Memory condition in the browser. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images