[SUSE-SU-2023:1819-1] Security update for MozillaFirefox
Severity
Important
Affected Packages
27
CVEs
12
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
- Firefox Extended Support Release 102.10.0 ESR (bsc#1210212)
- CVE-2023-29531: Out-of-bound memory access in WebGL on macOS
- CVE-2023-29532: Mozilla Maintenance Service Write-lock bypass
- CVE-2023-29533: Fullscreen notification obscured
- MFSA-TMP-2023-0001: Double-free in libwebp
- CVE-2023-29535: Potential Memory Corruption following Garbage Collector compaction
- CVE-2023-29536: Invalid free from JavaScript code
- CVE-2023-29539: Content-Disposition filename truncation leads to Reflected File Download
- CVE-2023-29541: Files with malicious extensions could have been downloaded unsafely on Linux
- CVE-2023-29542: Bypass of file download extension restrictions
- CVE-2023-29545: Windows Save As dialog resolved environment variables
- CVE-2023-1945: Memory Corruption in Safe Browsing Code
- CVE-2023-29548: Incorrect optimization result on ARM64
- CVE-2023-29550: Memory safety bugs fixed in Firefox 112 and Firefox ESR 102.10
- ID
- SUSE-SU-2023:1819-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2023/suse-su-20231819-1/
- Published
-
2023-04-11T15:58:13
(17 months ago) - Modified
-
2023-04-11T15:58:13
(17 months ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS2-2023-2028
-
ALPINE:CVE-2023-1945
-
ALPINE:CVE-2023-29531
-
ALPINE:CVE-2023-29532
-
ALPINE:CVE-2023-29533
-
ALPINE:CVE-2023-29535
-
ALPINE:CVE-2023-29536
-
ALPINE:CVE-2023-29539
-
ALPINE:CVE-2023-29541
-
ALPINE:CVE-2023-29542
-
ALPINE:CVE-2023-29545
-
ALPINE:CVE-2023-29548
-
ALPINE:CVE-2023-29550
-
ALSA-2023:1786
-
ALSA-2023:1787
-
ALSA-2023:1802
-
ALSA-2023:1809
-
DSA-5385-1
-
DSA-5392-1
-
ELSA-2023-1786
-
ELSA-2023-1787
-
ELSA-2023-1791
-
ELSA-2023-1802
-
ELSA-2023-1806
-
ELSA-2023-1809
-
GLSA-202305-35
-
GLSA-202305-36
-
MFSA-2023-13
-
MFSA-2023-14
-
MFSA-2023-15
-
RHSA-2023:1786
-
RHSA-2023:1787
-
RHSA-2023:1791
-
RHSA-2023:1802
-
RHSA-2023:1806
-
RHSA-2023:1809
-
RLSA-2023:1802
-
RLSA-2023:1809
-
SSA:2023-101-01
-
SSA:2023-102-01
-
SUSE-SU-2023:1817-1
-
SUSE-SU-2023:1855-1
-
SUSE-SU-2023:2064-1
-
USN-6010-1
-
USN-6015-1
-
USN-6120-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=5 | suse |
 MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 102.10.0-112.156.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 102.10.0-112.156.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=5 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=4 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=5 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=4 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=5 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=4 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=aarch64&distro=sles-12&sp=5 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=aarch64&distro=sles-12&sp=4 | suse |
MozillaFirefox-devel
|
< 102.10.0-112.156.1 | sles-12 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |