CVE-2023-4048: 
NixOS vulnerability analysis and mitigation

An out-of-bounds read vulnerability (CVE-2023-4048) was discovered in Firefox's DOMParser functionality that could lead to an exploitable crash when parsing HTML in low memory situations. The vulnerability affects Firefox versions prior to 116, Firefox ESR versions prior to 102.14, and Firefox ESR versions prior to 115.1. This security issue was reported by Irvan Kurniawan and was fixed in August 2023 (Mozilla Advisory).

The vulnerability occurs in the DOMParser.parseFromString function when processing HTML innerHTML with mimeType text/html under low virtual memory conditions. The issue manifests in mozilla::dom::Element::BindToTree after a realloc failure in AttrArray::GrowBy. When newImpl becomes nullptr due to the realloc failure, NSENSURETRUE returns false, leading to an out-of-bounds read at various memory addresses (Mozilla Advisory, Bugzilla).

The vulnerability has been rated as high severity with a CVSS v3.1 base score of 7.5. When successfully exploited, it could lead to a crash of the application and potential arbitrary code execution through memory corruption (NVD).

The vulnerability has been fixed in Firefox 116, Firefox ESR 102.14, and Firefox ESR 115.1. Users are advised to upgrade to these or later versions. The fix involves proper handling of memory allocation failures in the AttrArray implementation to prevent memory leaks (Mozilla Advisory, Debian Advisory).