Overview

File _patchinfo of Package patchinfo.25576

<patchinfo incident="25576">
  <issue tracker="bnc" id="1202645">VUL-0: MozillaFirefox / MozillaThunderbird: update to 104 and 102.2esr/91.13esr</issue>
  <issue tracker="cve" id="2022-38473"/>
  <issue tracker="cve" id="2022-38472"/>
  <issue tracker="cve" id="2022-38478"/>
  <packager>cgrobertson</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaFirefox</summary>
  <description>This update for MozillaFirefox fixes the following issues:

Firefox Extended Support Release 91.13.0 ESR (bsc#1202645):

- CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error handling.
- CVE-2022-38473: Fixed an issue where cross-origin XSLT documents could inherit the parent's permissions.
- CVE-2022-38478: Fixed various memory safety issues.
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places