Skip to main content
Early Access
— Mondoo Vulnerability Intelligence is currently in preview.
Vulnerability Intelligence
Login
Get Demo
Back to search
SUSE-SU-2025:4512-1
UNKNOWN
Security update for mozjs52
Published Dec 23, 2025
Modified 3 weeks ago
Fix available
Details
This update for mozjs52 fixes the following issues:
CVE-2024-45491: Fixed integer overflow in dtdCopy (bsc#1230037)
CVE-2024-50602: Fixed DoS via XML_ResumeParser (bsc#1232599)
CVE-2024-45492: Fixed integer overflow in function nextScaffoldPart (bsc#1230038)
CVE-2024-45490: Fixed negative len for XML_ParseBuffer (bsc#1230036)
Affected Packages
SUSE:Linux Enterprise Module for Package Hub 15 SP7
libmozjs-52
Fixed in:
52.6.0-150000.3.9.1
SUSE:Linux Enterprise Module for Package Hub 15 SP7
mozjs52
Fixed in:
52.6.0-150000.3.9.1
openSUSE:Leap 15.6
libmozjs-52
Fixed in:
52.6.0-150000.3.9.1
openSUSE:Leap 15.6
mozjs52
Fixed in:
52.6.0-150000.3.9.1
openSUSE:Leap 15.6
mozjs52-devel
Fixed in:
52.6.0-150000.3.9.1
References
REPORT
https://bugzilla.suse.com/1230036
REPORT
https://bugzilla.suse.com/1230037
REPORT
https://bugzilla.suse.com/1230038
REPORT
https://bugzilla.suse.com/1232599
WEB
https://www.suse.com/security/cve/CVE-2024-45490
WEB
https://www.suse.com/security/cve/CVE-2024-45491
WEB
https://www.suse.com/security/cve/CVE-2024-45492
WEB
https://www.suse.com/security/cve/CVE-2024-50602
ADVISORY
https://www.suse.com/support/update/announcement/2025/suse-su-20254512-1/
Upstream
CVE-2024-45490
CVE-2024-45491
CVE-2024-45492
CVE-2024-50602
Related
CVE-2024-45490
CVE-2024-45491
CVE-2024-45492
CVE-2024-50602
Ecosystems
SUSE Linux Enterprise Module for Package Hub 15 SP7
openSUSE Leap 15.6
Timeline
Published
Dec 23, 2025
Modified
Dec 23, 2025
SUSE-SU-2025:4512-1 | Mondoo Vulnerability Intelligence