Overview

File _patchinfo of Package patchinfo.30734

<patchinfo incident="30734">
  <issue tracker="bnc" id="1215309">ffmpeg will stop compiling when binutils update is released</issue>
  <issue tracker="bnc" id="1215575">VUL-0: MozillaFirefox / MozillaThunderbird: update to 118 and 115.3esr</issue>
  <issue tracker="cve" id="2023-5168"/>
  <issue tracker="cve" id="2023-5169"/>
  <issue tracker="cve" id="2023-5171"/>
  <issue tracker="cve" id="2023-5174"/>
  <issue tracker="cve" id="2023-5176"/>
  <packager>MSirringhaus</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaFirefox</summary>
  <description>This update for MozillaFirefox fixes the following issues:

Update to Firefox Extended Support Release 115.3.0 ESR (MFSA 2023-42, bsc#1215575):

Security fixes:

- CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1 (bmo#1846683).
- CVE-2023-5169: Out-of-bounds write in PathOps (bmo#1846685).
- CVE-2023-5171: Use-after-free in Ion Compiler (bmo#1851599).
- CVE-2023-5174: Double-free in process spawning on Windows (bmo#1848454).
- CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3 (bmo#1836353, bmo#1842674, bmo#1843824, bmo#1843962, bmo#1848890, bmo#1850180, bmo#1850983, bmo#1851195).

Other fixes:

  - Fix broken build with newer binutils (bsc#1215309)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places