exploitDog

RLSA-2023:4071

Опубликовано: 19 июл. 2023

Источник: rocky

Оценка: Important

Описание

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.

This update upgrades Firefox to version 102.13.0 ESR.

Security Fix(es):

Mozilla: Use-after-free in WebRTC certificate generation (CVE-2023-37201)
Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey (CVE-2023-37202)
Mozilla: Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13 (CVE-2023-37211)
Mozilla: Fullscreen notification obscured (CVE-2023-37207)
Mozilla: Lack of warning when opening Diagcab files (CVE-2023-37208)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
firefox	aarch64	2.el9_2	firefox-102.13.0-2.el9_2.aarch64.rpm
firefox-x11	aarch64	2.el9_2	firefox-x11-102.13.0-2.el9_2.aarch64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2219747
Red Hat - 2219747
https://bugzilla.redhat.com/show_bug.cgi?id=2219748
Red Hat - 2219748
https://bugzilla.redhat.com/show_bug.cgi?id=2219749
Red Hat - 2219749
https://bugzilla.redhat.com/show_bug.cgi?id=2219750
Red Hat - 2219750
https://bugzilla.redhat.com/show_bug.cgi?id=2219751
Red Hat - 2219751

Связанные уязвимости

RLSA-2023:4076

rocky

почти 2 года назад

Important: firefox security update

RLSA-2023:4063

rocky

почти 2 года назад

Important: thunderbird security update

ELSA-2023-4079

oracle-oval

почти 2 года назад

ELSA-2023-4079: firefox security update (IMPORTANT)

ELSA-2023-4076

oracle-oval

почти 2 года назад

ELSA-2023-4076: firefox security update (IMPORTANT)

ELSA-2023-4071

oracle-oval

почти 2 года назад

ELSA-2023-4071: firefox security update (IMPORTANT)