CVE-2024-43097

EUVD-2024-40710
In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Affected Products (NVD)
VendorProductVersion
googleandroid
12.0
googleandroid
12.1
googleandroid
13.0
googleandroid
14.0
googleandroid
15.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
firefox-esr
bookworm
128.14.0esr-1~deb12u1
fixed
bookworm (security)
140.6.0esr-1~deb12u1
fixed
bullseye
vulnerable
bullseye (security)
140.6.0esr-1~deb11u1
fixed
forky
140.5.0esr-1
fixed
sid
140.6.0esr-1
fixed
trixie
140.4.0esr-1~deb13u1
fixed
trixie (security)
140.6.0esr-1~deb13u1
fixed
thunderbird
bookworm
1:128.14.0esr-1~deb12u1
fixed
bookworm (security)
1:140.6.0esr-1~deb12u1
fixed
bullseye
vulnerable
bullseye (security)
1:140.6.0esr-1~deb11u1
fixed
forky
1:140.6.0esr-1
fixed
sid
1:140.6.0esr-1
fixed
trixie
1:140.4.0esr-1~deb13u1
fixed
trixie (security)
1:140.6.0esr-1~deb13u1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
MozillaFirefox
suse enterprise desktop 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise server 12 SP3
128.8.0-112.249.3
fixed
suse enterprise server 12 SP5
128.8.0-112.249.3
fixed
suse enterprise server 15 SP2
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.152.173.1
fixed
MozillaFirefox-devel
suse enterprise desktop 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise server 12 SP3
128.8.0-112.249.3
fixed
suse enterprise server 12 SP5
128.8.0-112.249.3
fixed
suse enterprise server 15 SP2
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.152.173.1
fixed
MozillaFirefox-translations-common
suse enterprise desktop 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise server 12 SP3
128.8.0-112.249.3
fixed
suse enterprise server 12 SP5
128.8.0-112.249.3
fixed
suse enterprise server 15 SP2
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.152.173.1
fixed
MozillaFirefox-translations-other
suse enterprise desktop 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP2
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP3
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP4
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP5
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.152.173.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.152.173.1
fixed
MozillaThunderbird
suse enterprise desktop 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP7
128.8.0-150200.8.203.1
fixed
MozillaThunderbird-translations-common
suse enterprise desktop 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP7
128.8.0-150200.8.203.1
fixed
MozillaThunderbird-translations-other
suse enterprise desktop 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise desktop 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise sap 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise server 15 SP7
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP6
128.8.0-150200.8.203.1
fixed
suse enterprise workstation 15 SP7
128.8.0-150200.8.203.1
fixed
Common Weakness Enumeration
References
https://android.googlesource.com/platform/external/skia/+/8d355fe1d0795fc30b84194b87563f75c6f8f2a7
https://source.android.com/security/bulletin/2024-12-01
https://lists.debian.org/debian-lts-announce/2025/03/msg00006.html