CVE-2024-7525
Description
It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
CVE-2024-7525 NameCVE-2024-7525 DescriptionIt was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14. SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec,โฆ
CVE-2024-7525
| Name | CVE-2024-7525 |
| Description | It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14. |
| Source | CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DSA-5740-1, DSA-5744-1 |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| firefox (PTS) | sid | 151.0.3-1 | fixed |
| firefox-esr (PTS) | bullseye | 115.14.0esr-1~deb11u1 | fixed |
| bullseye (security) | 140.11.0esr-1~deb11u1 | fixed | |
| bookworm | 140.10.2esr-1~deb12u1 | fixed | |
| bookworm (security) | 140.11.0esr-1~deb12u1 | fixed | |
| trixie | 140.10.2esr-1~deb13u1 | fixed | |
| trixie (security) | 140.11.0esr-1~deb13u1 | fixed | |
| forky, sid | 140.11.0esr-1 | fixed | |
| thunderbird (PTS) | bullseye | 1:115.12.0-1~deb11u1 | vulnerable |
| bullseye (security) | 1:140.11.0esr-1~deb11u1 | fixed | |
| bookworm | 1:140.10.1esr-1~deb12u1 | fixed | |
| bookworm (security) | 1:140.11.0esr-1~deb12u1 | fixed | |
| trixie | 1:140.10.1esr-1~deb13u1 | fixed | |
| trixie (security) | 1:140.11.0esr-1~deb13u1 | fixed | |
| forky, sid | 1:140.11.0esr-1 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| firefox | source | (unstable) | 129.0-1 | |||
| firefox-esr | source | bullseye | 115.14.0esr-1~deb11u1 | DSA-5740-1 | ||
| firefox-esr | source | bookworm | 115.14.0esr-1~deb12u1 | DSA-5740-1 | ||
| firefox-esr | source | (unstable) | 115.14.0esr-1 | |||
| thunderbird | source | bullseye | 1:115.14.0-1~deb11u1 | DSA-5744-1 | ||
| thunderbird | source | bookworm | 1:115.14.0-1~deb12u1 | DSA-5744-1 | ||
| thunderbird | source | (unstable) | 1:128.1.0esr-1 |
Notes
https://www.mozilla.org/en-US/security/advisories/mfsa2024-33/#CVE-2024-7525
https://www.mozilla.org/en-US/security/advisories/mfsa2024-34/#CVE-2024-7525
https://www.mozilla.org/en-US/security/advisories/mfsa2024-38/#CVE-2024-7525
Apply commands
https://www.mozilla.org/en-US/security/advisories/mfsa2024-33/#CVE-2024-7525https://www.mozilla.org/en-US/security/advisories/mfsa2024-34/#CVE-2024-7525https://www.mozilla.org/en-US/security/advisories/mfsa2024-38/#CVE-2024-7525OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| โ | Affected | โ |
Debian Fixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 115.14.0esr-1 |
| sid | Fixed | 129.0-1 |
| forky | Fixed | 115.14.0esr-1 |
| bullseye | Fixed | 115.14.0esr-1~deb11u1 |
| bookworm | Fixed | 115.14.0esr-1~deb12u1 |
Red Hat Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | โ |
| 8 | Fixed | โ |
Rocky Linux Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 8 | Fixed | โ |
References
- https://access.redhat.com/errata/RHSA-2024:5322
- https://access.redhat.com/errata/RHSA-2024:5392
- https://errata.rockylinux.org/RLSA-2024:5402
- https://security-tracker.debian.org/tracker/CVE-2024-7525
- https://www.suse.com/security/cve/CVE-2024-7525.html
- https://access.redhat.com/errata/RHSA-2024:5402
- https://bugzilla.redhat.com/2303135
- https://bugzilla.redhat.com/2303136
- https://bugzilla.redhat.com/2303137
- https://bugzilla.redhat.com/2303138
- https://bugzilla.redhat.com/2303139
- https://bugzilla.redhat.com/2303142
- https://bugzilla.redhat.com/2303143
- https://bugzilla.redhat.com/2303144
- https://bugzilla.redhat.com/2303145
- https://bugzilla.redhat.com/2303146
- https://errata.almalinux.org/8/ALSA-2024-5402.html
- https://errata.almalinux.org/9/ALSA-2024-5392.html
- https://access.redhat.com/errata/RHSA-2024:5391
- https://bugzilla.redhat.com/2303141
- https://errata.almalinux.org/8/ALSA-2024-5391.html
- https://errata.almalinux.org/9/ALSA-2024-5322.html
- https://errata.rockylinux.org/RLSA-2024:5391
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.