exploitDog

RLSA-2022:7070

Опубликовано: 20 окт. 2022

Источник: rocky

Оценка: Important

Описание

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.

This update upgrades Firefox to version 102.4.0 ESR.

Security Fix(es):

Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
Mozilla: Denial of Service via window.print (CVE-2022-42929)
Mozilla: Memory safety bugs fixed in Firefox 106 and Firefox ESR 102.4 (CVE-2022-42932)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
firefox	x86_64	1.el8_6.0.1	firefox-102.4.0-1.el8_6.0.1.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2136156
Red Hat - 2136156
https://bugzilla.redhat.com/show_bug.cgi?id=2136157
Red Hat - 2136157
https://bugzilla.redhat.com/show_bug.cgi?id=2136158
Red Hat - 2136158
https://bugzilla.redhat.com/show_bug.cgi?id=2136159
Red Hat - 2136159

Связанные уязвимости

SUSE-SU-2022:3726-1

suse-cvrf

больше 2 лет назад

Security update for MozillaFirefox

SUSE-SU-2022:3719-1

suse-cvrf

больше 2 лет назад

Security update for MozillaFirefox

SUSE-SU-2022:3698-1

suse-cvrf

больше 2 лет назад

Security update for MozillaFirefox

ELSA-2022-7071

oracle-oval

больше 2 лет назад

ELSA-2022-7071: firefox security update (IMPORTANT)

ELSA-2022-7070

oracle-oval

больше 2 лет назад

ELSA-2022-7070: firefox security update (IMPORTANT)