[ELSA-2024-0608] firefox security update

Severity Important

Affected Packages 1

CVEs 9

[115.7.0.1.0.1]
- Update to 115.7.0 build 1

[115.6.0-1.0.1]
- Update to 115.6.0 build1
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.5.0-1.0.1]
- Update to 115.5.0 build1
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.4.0-1.0.1]
- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL

[115.3.1-1.0.1]
- Update to 115.3.1

[102.15.1-1.0.1]
- Update to 102.15.1 build2

[102.15.0-1.0.1]
- Update to 102.15.0 build2

[102.14.0-1.0.1]
- Updated homepages to use https [Orabug: 34648274]
- Removed Upstream references
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[102.14.0-1]
- Update to 102.14.0 build1

[102.13.0-2]
- Update to 102.13.0 build2

[102.13.0-1]
- Update to 102.13.0 build1

[102.12.0-1]
- Update to 102.12.0 build1

[102.11.0-2]
- Do not import cert to certdb on override exception:
rhbz#2118991
mzbz@1833330

[102.11.0-2]
- Update to 102.11.0 build2

[102.11.0-1]
- Update to 102.11.0 build1

[102.10.0-1]
- Update to 102.10.0 build1

[102.9.0-4]
- Update to 102.9.0 build2

[102.9.0-2]
- removed disable-openh264-download

[102.9.0-1]
- Update to 102.9.0 build1

[102.8.0-2]
- Update to 102.8.0 build2

[102.8.0-1]
- Update to 102.8.0 build1

[102.7.0-1]
- Update to 102.7.0 build1

[102.6.0-2]
- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9

[102.6.0-1]
- Update to 102.6.0 build1

[102.5.0-2]
- Added libwebrtc screencast patch for newer features

[102.5.0-1]
- Update to 102.5.0 build1

[102.4.0-1]
- Update to 102.4.0 build1

[102.3.0-7]
- Fix for expat CVE-2022-40674 and non functional webrtc

[102.3.0-6]
- Update to 102.3.0 build1

[91.12.0-1]
- Update to 91.12.0 build1

[91.11.0-2]
- Update to 91.11.0 build2

[91.11.0-1]
- Update to 91.11.0 build1

[91.10.0-1]
- Update to 91.10.0 build1

[91.9.1-1]
- Update to 91.9.1 build1

[91.9.0-1]
- Update to 91.9.0

[91.8.0-1]
- Update to 91.8.0

[91.7.0-3]
- Update to 91.7.0 build3

[91.7.0-2]
- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315

[91.7.0-1]
- Update to 91.7.0 build2

[91.6.0-2]
- Install langpacks to the browser/extensions to make them available in UI:
rhbz#2030190

[91.6.0-1]
- Update to 91.6.0 build1

[91.5.0-2]
- Use default update channel to fix non working enterprise policies:
rhbz#2044667

[91.5.0-1]
- Update to 91.5.0 build1

[91.4.0-2]
- Added fix for failing addons signatures.

[91.4.0-1]
- Update to 91.4.0 build1

[91.3.0-1]
- Update to 91.3.0 build1

[91.2.0-5]
- Fixed crashes when FIPS is enabled.

[91.2.0-4]
- Disable webrender on the s390x due to wrong colors: rhbz#2009503

[91.2.0-3]
- Update to 91.2.0 build1

[91.1.0-1]
- Update to 91.1.0 build1

Tue Aug 17 2021 Jan Horak jhorak@redhat.com
Update to 91.0.1 build1

[91.0-1]
- Update to 91.0 ESR

[91.0-1]
- Update to 91.0b8

[78.12.0-2]
- Rebuild to pickup older nss

[78.12.0-1]
- Update to 78.12.0 build1

[78.11.0-3]
- Update to 78.11.0 build2 (release)

[78.11.0-2]
- Fix rhel_minor_version for dist .el8_4 and .el8

[78.11.0-1]
- Update to 78.11.0 build1

[78.10.0-1]
- Update to 78.10.0

[78.9.0-1]
- Update to 78.9.0 build1

[78.8.0-1]
- Update to 78.8.0 build2

[78.7.1-1]
- Update to 78.7.1

[78.7.0-3]
- Fixing install prefix for the homepage

[78.7.0-2]
- Update to 78.7.0 build2

[78.7.0-1]
- Update to 78.7.0 build1

[78.6.1-1]
- Update to 78.6.1 build1

[78.6.0-1]
- Update to 78.6.0 build1

[78.5.0-1]
- Update to 78.5.0 build1

Tue Nov 10 2020 erack@redhat.com - 78.4.1-1
Update to 78.4.1

[78.4.0-3]
- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading

[78.4.0-2]
- Enable addon sideloading

[78.4.0-1]
- Update to 78.4.0 build2

Fri Sep 18 2020 Jan Horak jhorak@redhat.com
Update to 78.3.0 build1

[78.2.0-3]
- Update to 78.2.0 build1

Fri Jul 24 2020 Jan Horak jhorak@redhat.com
Update to 68.11.0 build1
Fri Jun 26 2020 Jan Horak jhorak@redhat.com
Update to 68.10.0 build1
Fri May 29 2020 Jan Horak jhorak@redhat.com
Update to 68.9.0 build1
Added patch for pipewire 0.3
Mon May 11 2020 Jan Horak jhorak@redhat.com
Added s390x specific patches
Wed Apr 29 2020 Jan Horak jhorak@redhat.com
Update to 68.8.0 build1

[68.7.0-3]
- Added fix for rhbz#1821418

[68.7.0-2]
- Update to 68.7.0 build3

[68.6.1-1]
- Update to 68.6.1 ESR

Wed Mar 04 2020 Jan Horak jhorak@redhat.com
Update to 68.6.0 build1

[68.5.0-3]
- Added fix for rhbz#1805667
- Enabled mzbz@1170092 - Firefox prefs at /etc

Fri Feb 07 2020 Jan Horak jhorak@redhat.com
Update to 68.5.0 build2
Wed Feb 05 2020 Jan Horak jhorak@redhat.com
Update to 68.5.0 build1
Wed Jan 08 2020 Jan Horak jhorak@redhat.com
Update to 68.4.1esr build1
Fri Jan 03 2020 Jan Horak jhorak@redhat.com
Update to 68.4.0esr build1
Wed Dec 18 2019 Jan Horak jhorak@redhat.com
Fix for wrong intl.accept_lang when using non en-us langpack

[68.3.0-1]
- Update to 68.3.0 ESR

[68.2.0-4]
- Added patch for TLS 1.3 support.

[68.2.0-3]
- Rebuild

[68.2.0-2]
- Rebuild

[68.2.0-1]
- Update to 68.2.0 ESR

[68.1.0-6]
- Enable system nss on RHEL6

[68.1.0-2]
- Enable building langpacks

[68.1.0-1]
- Update to 68.1.0 ESR

[68.0.1-4]
- Enable system nss

[68.0.1-3]
- Enable official branding

[68.0.1-2]
- Enabled PipeWire on RHEL8

[68.0.1-1]
- Updated to 68.0.1 ESR

[68.0-0.11]
- Update to 68.0 ESR

[68.0-0.10]
- Updated to 68.0 alpha 13
- Enabled second arches

[68.0-0.1]
- Updated to 68.0 alpha

[60.6.0-3]
- Added Google API keys (mozbz#1531176)

[60.6.0-2]
- Update to 60.6.0 ESR (Build 2)

[60.6.0-1]
- Update to 60.6.0 ESR (Build 1)

[60.5.1-1]
- Update to 60.5.1 ESR

[60.5.0-3]
- Added fix for rhbz#1672424 - Firefox crashes on NFS drives.

[60.5.0-2]
- Updated to 60.5.0 ESR build2

[60.5.0-1]
- Updated to 60.5.0 ESR build1

[60.4.0-3]
- Fixing fontconfig warnings (rhbz#1601475)

[60.4.0-2]
- Added pipewire patch from Tomas Popela (rhbz#1664270)

[60.4.0-1]
- Update to 60.4.0 ESR

[60.3.0-2]
- Added firefox-gnome-shell-extension

[60.3.0-1]
- Update to 60.3.0 ESR

[60.2.2-2]
- Added patch for rhbz#1633932

[60.2.2-1]
- Update to 60.2.2 ESR

[60.2.1-1]
- Update to 60.2.1 ESR

[60.2.0-1]
- Update to 60.2.0 ESR

[60.1.0-9]
- Do not set user agent (rhbz#1608065)
- GTK dialogs are localized now (rhbz#1619373)
- JNLP association works again (rhbz#1607457)

[60.1.0-8]
- Fixed homepage and bookmarks (rhbz#1606778)
- Fixed missing file associations in RHEL6 (rhbz#1613565)

[60.1.0-7]
- Run at-spi-bus if not running already (for the bundled gtk3)

[60.1.0-6]
- Fix for missing schemes for bundled gtk3

[60.1.0-5]
- Added mesa-libEGL dependency to gtk3/rhel6

[60.1.0-4]
- Disabled jemalloc on all second arches

[60.1.0-3]
- Updated to 60.1.0 ESR build2

[60.1.0-2]
- Disabled jemalloc on second arches

[60.1.0-1]
- Updated to 60.1.0 ESR

[60.0-12]
- Fixing bundled libffi issues
- Readded some requirements

[60.0-10]
- Added fix for mozilla BZ#1436242 - IPC crashes.

[60.0-9]
- Bundling libffi for the sec-arches
- Added openssl-devel for the Python
- Fixing bundled gtk3

[60.0-8]
- Added fix for mozilla BZ#1458492

[60.0-7]
- Added patch from rhbz#1498561 to fix ppc64(le) crashes.

[60.0-6]
- Disabled jemalloc on second arches

[60.0-4]
- Update to 60.0 ESR

[52.7.0-1]
- Update to 52.7.0 ESR

[52.6.0-2]
- Build Firefox for desktop arches only (x86_64 and ppc64le)

[52.6.0-1]
- Update to 52.6.0 ESR

[52.5.0-1]
- Update to 52.5.0 ESR

[52.4.0-1]
- Update to 52.4.0 ESR

[52.3.0-3]
- Update to 52.3.0 ESR (b2)
- Require correct nss version

[52.2.0-1]
- Update to 52.2.0 ESR

[52.1.2-1]
- Update to 52.1.2 ESR

[52.0-7]
- Added fix for accept language (rhbz#1454322)

[52.0-6]
- Removing patch required for older NSS from RHEL 7.3
- Added patch for rhbz#1414564

[52.0-5]
- Added fix for mozbz#1348168/CVE-2017-5428

[52.0-4]
- Update to 52.0 ESR (b4)

[52.0-3]
- Added fix for rhbz#1423012 - ppc64 gfx crashes

[52.0-2]
- Enable system nss

[52.0-1]
- Update to 52.0ESR (B1)
- Build RHEL7 package for Gtk3

[52.0-0.13]
- Added fix for rhbz#1414535

[52.0-0.12]
- Update to 52.0b8

[52.0-0.11]
- Readded addons patch

[52.0-0.10]
- Update to 52.0b3

[52.0-0.9]
- Update to 52.0b2

[52.0-0.8]
- Update to 52.0b1

[52.0-0.5]
- Firefox Aurora 52 testing build

Package	Affected Version
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-8.9	< 115.7.0-1.0.1.el8_9

ID

ELSA-2024-0608

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2024-0608.html

Published

2024-01-31T00:00:00
(7 months ago)

Modified

2024-01-31T00:00:00
(7 months ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2024-0608	https://linux.oracle.com/errata/ELSA-2024-0608.html
CVE	CVE-2024-0747	https://linux.oracle.com/cve/CVE-2024-0747.html
CVE	CVE-2024-0750	https://linux.oracle.com/cve/CVE-2024-0750.html
CVE	CVE-2024-0753	https://linux.oracle.com/cve/CVE-2024-0753.html
CVE	CVE-2024-0741	https://linux.oracle.com/cve/CVE-2024-0741.html
CVE	CVE-2024-0742	https://linux.oracle.com/cve/CVE-2024-0742.html
CVE	CVE-2024-0746	https://linux.oracle.com/cve/CVE-2024-0746.html
CVE	CVE-2024-0751	https://linux.oracle.com/cve/CVE-2024-0751.html
CVE	CVE-2024-0749	https://linux.oracle.com/cve/CVE-2024-0749.html
CVE	CVE-2024-0755	https://linux.oracle.com/cve/CVE-2024-0755.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-8.9	oraclelinux	firefox	< 115.7.0-1.0.1.el8_9	oraclelinux-8.9

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date