exploitDog

RLSA-2023:1337

Опубликовано: 06 апр. 2023

Источник: rocky

Оценка: Important

Описание

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.

This update upgrades Firefox to version 102.9.0 ESR.

Security Fix(es):

Mozilla: Incorrect code generation during JIT compilation (CVE-2023-25751)
Mozilla: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9 (CVE-2023-28176)
Mozilla: Potential out-of-bounds when accessing throttled streams (CVE-2023-25752)
Mozilla: Invalid downcast in Worklets (CVE-2023-28162)
Mozilla: URL being dragged from a removed cross-origin iframe into the same tab triggered navigation (CVE-2023-28164)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
firefox	x86_64	3.el9_1	firefox-102.9.0-3.el9_1.x86_64.rpm
firefox-x11	x86_64	3.el9_1	firefox-x11-102.9.0-3.el9_1.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2178458
Red Hat - 2178458
https://bugzilla.redhat.com/show_bug.cgi?id=2178460
Red Hat - 2178460
https://bugzilla.redhat.com/show_bug.cgi?id=2178466
Red Hat - 2178466
https://bugzilla.redhat.com/show_bug.cgi?id=2178470
Red Hat - 2178470
https://bugzilla.redhat.com/show_bug.cgi?id=2178472
Red Hat - 2178472

Связанные уязвимости

RLSA-2023:1407

rocky

около 2 лет назад

Important: thunderbird security update

RLSA-2023:1403

rocky

около 2 лет назад

Important: thunderbird security update

RLSA-2023:1336

rocky

около 2 лет назад

Important: firefox security update

ELSA-2023-1407

oracle-oval

больше 2 лет назад

ELSA-2023-1407: thunderbird security update (IMPORTANT)

ELSA-2023-1403

oracle-oval

больше 2 лет назад

ELSA-2023-1403: thunderbird security update (IMPORTANT)