CVE-2023-29536: 
NixOS vulnerability analysis and mitigation

CVE-2023-29536 is a high-severity memory corruption vulnerability discovered in Mozilla Firefox and related products. The vulnerability was reported by zx from qriousec and affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. The issue was disclosed on April 11, 2023, and received a CVSS v3.1 base score of 8.8 (HIGH) (NVD, Mozilla Advisory).

The vulnerability occurs when the memory manager incorrectly frees a pointer that addresses attacker-controlled memory. The issue stems from using the wrong API in the swap code, where the code fails to use unshiftedElementsHeader to get the base of the allocation. This can result in freeing a pointer inside a buffer instead of the pointer to the start of buffer (Mozilla Bug).

The vulnerability can lead to memory corruption, assertion failures, or potentially exploitable crashes. The issue can be triggered from web content and could potentially allow an attacker to control the content process. The vulnerability affects multiple Mozilla products across different platforms (Mozilla Advisory).

The vulnerability was patched in Firefox 112, Firefox ESR 102.10, and Thunderbird 102.10. The fix involved replacing the incorrect helper function call with the correct API that is already used in similar cases. Users are advised to upgrade to these versions or later to protect against this vulnerability (Mozilla Advisory, Red Hat Advisory).