[SSA:2022-263-02] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to
fix security issues.
Here are the details from the Slackware 15.0 ChangeLog
patches/packages/mozilla-firefox-102.3.0esr-i686-1_slack15.0.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/102.3.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-41/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
(* Security fix *)
Where to find the new packages
Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.
Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/mozilla-firefox-102.3.0esr-i686-1_slack15.0.txz
Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/mozilla-firefox-102.3.0esr-x86_64-1_slack15.0.txz
Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/mozilla-firefox-105.0-i686-1.txz
Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/mozilla-firefox-105.0-x86_64-1.txz
MD5 signatures
Slackware 15.0 package:
382607e9da9fb1401ea200dcb1b494b4 mozilla-firefox-102.3.0esr-i686-1_slack15.0.txz
Slackware x86_64 15.0 package:
bf7f3f36880cedd428380b0bd33ec011 mozilla-firefox-102.3.0esr-x86_64-1_slack15.0.txz
Slackware -current package:
6404c0285e34739d7ac36052b0c5c4c5 xap/mozilla-firefox-105.0-i686-1.txz
Slackware x86_64 -current package:
62081a6d768b467b537b2126015f7b1d xap/mozilla-firefox-105.0-x86_64-1.txz
Installation instructions
Upgrade the package as root:
# upgradepkg mozilla-firefox-102.3.0esr-i686-1_slack15.0.txz
- ID
- SSA:2022-263-02
- Severity
- high
- Severity from
- CVE-2022-40962
- URL
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2022&m=slackware-security.388923
- Published
-
2022-09-20T22:59:20
(2 years ago) - Modified
-
2022-09-20T22:59:20
(2 years ago) - Rights
- Slackware Linux Security Team
- Other Advisories
-
- ALAS2-2022-1900
- ALPINE:CVE-2022-40956
- ALPINE:CVE-2022-40957
- ALPINE:CVE-2022-40958
- ALPINE:CVE-2022-40959
- ALPINE:CVE-2022-40960
- ALPINE:CVE-2022-40962
- ALSA-2022:6700
- ALSA-2022:6702
- ALSA-2022:6708
- ALSA-2022:6717
- DSA-5237-1
- DSA-5238-1
- ELSA-2022-6700
- ELSA-2022-6702
- ELSA-2022-6708
- ELSA-2022-6710
- ELSA-2022-6711
- ELSA-2022-6717
- GLSA-202209-18
- GLSA-202209-27
- MFSA-2022-40
- MFSA-2022-41
- MFSA-2022-42
- RHSA-2022:6700
- RHSA-2022:6702
- RHSA-2022:6708
- RHSA-2022:6710
- RHSA-2022:6711
- RHSA-2022:6717
- RLSA-2022:6702
- RLSA-2022:6708
- SUSE-SU-2022:3396-1
- SUSE-SU-2022:3440-1
- SUSE-SU-2022:3441-1
- SUSE-SU-2022:3800-1
- USN-5649-1
- USN-5724-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:slackbuild/slackware/mozilla-firefox?arch=x86_64&distro=slackware64-current | slackware | mozilla-firefox | < 105.0 | slackware64-current | x86_64 | |
Affected | pkg:slackbuild/slackware/mozilla-firefox?arch=x86_64&distro=slackware64-15.0 | slackware | mozilla-firefox | < 102.3.0esr | slackware64-15.0 | x86_64 | |
Affected | pkg:slackbuild/slackware/mozilla-firefox?arch=i686&distro=slackware-current | slackware | mozilla-firefox | < 105.0 | slackware-current | i686 | |
Affected | pkg:slackbuild/slackware/mozilla-firefox?arch=i686&distro=slackware-15.0 | slackware | mozilla-firefox | < 102.3.0esr | slackware-15.0 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |