{"id":"CVE-2022-34481","details":"In the \u003ccode\u003ensTArray_Impl::ReplaceElementsAt()\u003c/code\u003e function, an integer overflow could have occurred when the number of elements to replace was too large for the container. This vulnerability affects Firefox \u003c 102, Firefox ESR \u003c 91.11, Thunderbird \u003c 102, and Thunderbird \u003c 91.11.","modified":"2026-04-16T04:30:32.243819126Z","published":"2022-12-22T20:15:33.500Z","related":["ALSA-2022:5482","SUSE-SU-2022:2279-1","SUSE-SU-2022:2289-1","SUSE-SU-2022:2313-1","SUSE-SU-2022:2320-1","SUSE-SU-2022:3272-1","SUSE-SU-2022:3273-1","SUSE-SU-2022:3281-1","SUSE-SU-2022:3396-1","openSUSE-SU-2024:12161-1","openSUSE-SU-2024:12184-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2022-24/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2022-25/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2022-26/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1497246"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-34481.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"102.0"}]},{"events":[{"introduced":"0"},{"fixed":"91.11"}]},{"events":[{"introduced":"0"},{"fixed":"91.11"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}