[ELSA-2024-1486] firefox security update

Severity Critical

Affected Packages 1

CVEs 10

[115.9.1-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.9.1-1]
- Update to 115.9.1

[115.9.0-2]
- Update to 115.9.0 build2

[115.9.0-1]
- Update to 115.9.0 build1
- Fix expat CVE-2023-52425

Package	Affected Version
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-7.9	< 115.9.1-1.0.1.el7_9

ID

ELSA-2024-1486

Severity

critical

URL

https://linux.oracle.com/errata/ELSA-2024-1486.html

Published

2024-03-26T00:00:00
(5 months ago)

Modified

2024-03-26T00:00:00
(5 months ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2024-1486	https://linux.oracle.com/errata/ELSA-2024-1486.html
CVE	CVE-2023-5388	https://linux.oracle.com/cve/CVE-2023-5388.html
CVE	CVE-2024-29944	https://linux.oracle.com/cve/CVE-2024-29944.html
CVE	CVE-2024-2611	https://linux.oracle.com/cve/CVE-2024-2611.html
CVE	CVE-2024-2612	https://linux.oracle.com/cve/CVE-2024-2612.html
CVE	CVE-2024-2614	https://linux.oracle.com/cve/CVE-2024-2614.html
CVE	CVE-2024-2610	https://linux.oracle.com/cve/CVE-2024-2610.html
CVE	CVE-2024-2616	https://linux.oracle.com/cve/CVE-2024-2616.html
CVE	CVE-2024-2607	https://linux.oracle.com/cve/CVE-2024-2607.html
CVE	CVE-2024-2608	https://linux.oracle.com/cve/CVE-2024-2608.html
CVE	CVE-2024-0743	https://linux.oracle.com/cve/CVE-2024-0743.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-7.9	oraclelinux	firefox	< 115.9.1-1.0.1.el7_9	oraclelinux-7.9

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date