Описание
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
Mozilla Firefox was updated to 115.3.1 ESR, fixing a security issue:
MFSA 2023-44 (bsc#1215814)
- CVE-2023-5217: Fixed heap buffer overflow in libvpx
Список пакетов
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
MozillaFirefox-115.3.1-112.185.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-115.3.1-112.185.1
SUSE Linux Enterprise Server 12 SP5
MozillaFirefox-115.3.1-112.185.1
MozillaFirefox-devel-115.3.1-112.185.1
MozillaFirefox-translations-common-115.3.1-112.185.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
MozillaFirefox-115.3.1-112.185.1
MozillaFirefox-devel-115.3.1-112.185.1
MozillaFirefox-translations-common-115.3.1-112.185.1
SUSE Linux Enterprise Software Development Kit 12 SP5
MozillaFirefox-devel-115.3.1-112.185.1
Ссылки
- Link for SUSE-SU-2023:3950-1
- E-Mail link for SUSE-SU-2023:3950-1
- SUSE Security Ratings
- SUSE Bug 1215814
- SUSE CVE CVE-2023-5217 page
Описание
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:MozillaFirefox-115.3.1-112.185.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:MozillaFirefox-115.3.1-112.185.1
SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.3.1-112.185.1
SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.3.1-112.185.1
Ссылки
- CVE-2023-5217
- SUSE Bug 1215776
- SUSE Bug 1215778
- SUSE Bug 1215814
- SUSE Bug 1217559