Overview

File _patchinfo of Package patchinfo.28928

<patchinfo incident="28928">
  <issue tracker="bnc" id="1211175">VUL-0: MozillaFirefox / MozillaThunderbird: update to 113 and 102.11esr</issue>
  <issue id="2023-32205" tracker="cve" />
  <issue id="2023-32206" tracker="cve" />
  <issue id="2023-32207" tracker="cve" />
  <issue id="2023-32211" tracker="cve" />
  <issue id="2023-32212" tracker="cve" />
  <issue id="2023-32213" tracker="cve" />
  <issue id="2023-32214" tracker="cve" />
  <issue id="2023-32215" tracker="cve" />
  <packager>MSirringhaus</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaFirefox</summary>
  <description>This update for MozillaFirefox fixes the following issues:

Extended Support Release 102.11.0 ESR (bsc#1211175):

- CVE-2023-32205: Browser prompts could have been obscured by popups
- CVE-2023-32206: Crash in RLBox Expat driver
- CVE-2023-32207: Potential permissions request bypass via clickjacking
- CVE-2023-32211: Content process crash due to invalid wasm code
- CVE-2023-32212: Potential spoof due to obscured address bar
- CVE-2023-32213: Potential memory corruption in FileReader::DoReadData()
- CVE-2023-32214: Potential DoS via exposed protocol handlers
- CVE-2023-32215: Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places