{"id":"CVE-2024-8384","details":"The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox \u003c 130, Firefox ESR \u003c 128.2, Firefox ESR \u003c 115.15, Thunderbird \u003c 128.2, and Thunderbird \u003c 115.15.","modified":"2026-04-16T00:01:16.130145163Z","published":"2024-09-03T13:15:05.743Z","related":["ALSA-2024:6681","ALSA-2024:6682","ALSA-2024:6683","ALSA-2024:6684","CGA-jgvq-495x-f3q5","SUSE-SU-2024:3152-1","SUSE-SU-2024:3157-1","SUSE-SU-2024:3507-1","openSUSE-SU-2024:14325-1","openSUSE-SU-2024:14358-1","openSUSE-SU-2024:14369-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/09/msg00012.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/09/msg00025.html"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-43/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-44/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-39/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-40/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-41/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1911288"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-8384.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"130.0"}]},{"events":[{"introduced":"0"},{"fixed":"115.15"}]},{"events":[{"introduced":"128.0"},{"fixed":"128.2"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}