Lucene search
Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-6267-1.NASLHistoryAug 02, 2023 - 12:00 a.m.
Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6267-1)
2023-08-0200:00:00
Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
ubuntu 20.04 lts
firefox
vulnerabilities
usn-6267-1
cross-origin tainting
exploit
crash
permissions
race conditions
use-after-free
sandbox escape
spoofing attacks
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
69.1%
The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6267-1 advisory.
-
Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4045)
-
In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. This resulted in incorrect compilation and a potentially exploitable crash in the content process. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4046)
-
A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4047)
-
An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4048)
-
Race conditions in reference counting code were found through code inspection. These could have resulted in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4049)
-
In some cases, an untrusted input stream was copied to a stack buffer without checking its size. This resulted in a potentially exploitable crash which could have led to a sandbox escape. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4050)
-
A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116.
(CVE-2023-4051) -
A website could have obscured the full screen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116. (CVE-2023-4053)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-6267-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##
include('compat.inc');
if (description)
{
script_id(179203);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/01");
script_cve_id(
"CVE-2023-4045",
"CVE-2023-4046",
"CVE-2023-4047",
"CVE-2023-4048",
"CVE-2023-4049",
"CVE-2023-4050",
"CVE-2023-4051",
"CVE-2023-4053",
"CVE-2023-4055",
"CVE-2023-4056",
"CVE-2023-4057",
"CVE-2023-4058"
);
script_xref(name:"USN", value:"6267-1");
script_xref(name:"IAVA", value:"2023-A-0388-S");
script_name(english:"Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6267-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in
the USN-6267-1 advisory.
- Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image
data from another site in violation of same-origin policy. This vulnerability affects Firefox < 116,
Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4045)
- In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. This
resulted in incorrect compilation and a potentially exploitable crash in the content process. This
vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4046)
- A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user
into granting permissions. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR
< 115.1. (CVE-2023-4047)
- An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low
memory situations. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR <
115.1. (CVE-2023-4048)
- Race conditions in reference counting code were found through code inspection. These could have resulted
in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox < 116,
Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4049)
- In some cases, an untrusted input stream was copied to a stack buffer without checking its size. This
resulted in a potentially exploitable crash which could have led to a sandbox escape. This vulnerability
affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1. (CVE-2023-4050)
- A website could have obscured the full screen notification by using the file open dialog. This could have
led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116.
(CVE-2023-4051)
- A website could have obscured the full screen notification by using a URL with a scheme handled by an
external program, such as a mailto URL. This could have led to user confusion and possible spoofing
attacks. This vulnerability affects Firefox < 116. (CVE-2023-4053)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-6267-1");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-4058");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/08/01");
script_set_attribute(attribute:"patch_publication_date", value:"2023/08/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/08/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-geckodriver");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cak");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ia");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kab");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-my");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ne");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-szl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ur");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('20.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 20.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '20.04', 'pkgname': 'firefox', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-dev', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-geckodriver', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-af', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-an', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-as', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-az', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-be', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-br', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-cak', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-da', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-de', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-el', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-en', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-es', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-et', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-gn', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-he', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-hsb', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ia', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-id', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-is', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-it', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-kab', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-km', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-my', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ne', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-or', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-si', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-szl', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-te', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-tg', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-th', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-ur', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-uz', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'},
{'osver': '20.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '116.0+build2-0ubuntu0.20.04.2'}
];
var flag = 0;
foreach package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'firefox / firefox-dev / firefox-geckodriver / firefox-locale-af / etc');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4045
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4046
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4047
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4048
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4049
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4050
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4051
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4053
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4055
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4056
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4057
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4058
ubuntu.com/security/notices/USN-6267-1
Related
ubuntu
ubuntu
Firefox vulnerabilities
2023-08-02 00:00:00
Firefox regressions
2023-08-21 00:00:00
Firefox regressions
2023-08-08 00:00:00
osv
osv
firefox vulnerabilities
2023-08-02 06:19:10
firefox regressions
2023-08-08 03:01:21
firefox regressions
2023-08-21 02:12:46
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2023-29) - Linux
2023-08-02 00:00:00
Ubuntu: Security Advisory (USN-6267-1)
2023-08-03 00:00:00
Ubuntu: Security Advisory (USN-6267-2)
2023-08-09 00:00:00
oraclelinux
oraclelinux
firefox security update
2023-08-06 00:00:00
firefox security update
2023-08-04 00:00:00
firefox security update
2023-08-04 00:00:00
almalinux
almalinux
Important: firefox security update
2023-08-03 00:00:00
Important: firefox security update
2023-08-03 00:00:00
Important: thunderbird security update
2023-08-07 00:00:00
rocky
rocky
firefox security update
2023-08-08 12:34:07
firefox security update
2023-08-08 12:35:00
thunderbird security update
2023-08-08 12:34:39
nessus
nessus
RHEL 9 : firefox (RHSA-2023:4465)
2023-08-03 00:00:00
RHEL 7 : firefox (RHSA-2023:4461)
2023-08-03 00:00:00
RHEL 8 : firefox (RHSA-2023:4469)
2023-08-03 00:00:00
redhat
redhat
(RHSA-2023:4469) Important: firefox security update
2023-08-03 13:33:37
(RHSA-2023:4464) Important: firefox security update
2023-08-03 12:41:38
(RHSA-2023:4461) Important: firefox security update
2023-08-03 12:32:03
debian
debian
[SECURITY] [DLA 3523-1] firefox-esr security update
2023-08-09 19:05:02
[SECURITY] [DSA 5464-1] firefox-esr security update
2023-08-03 17:27:01
[SECURITY] [DLA 3521-1] thunderbird security update
2023-08-08 10:13:27
kaspersky
kaspersky
KLA51573 Multiple vulnerabilities in Mozilla Firefox
2023-08-01 00:00:00
KLA51574 Multiple vulnerabilities in Mozilla Firefox ESR
2023-08-01 00:00:00
KLA51618 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-02 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 116 — Mozilla
2023-08-01 00:00:00
Security Vulnerabilities fixed in Firefox ESR 102.14 — Mozilla
2023-08-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 102.14 — Mozilla
2023-08-02 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2232
2023-09-12 11:49:20
Advisory ROSA-SA-2023-2233
2023-09-12 11:49:48
slackware
slackware
[slackware-security] mozilla-firefox
2023-08-04 20:52:54
redos
redos
ROS-20230919-04
2023-09-19 00:00:00
ROS-20230908-07
2023-09-08 00:00:00
mageia
mageia
Updated firefox/thunderbird packages fix security vulnerability
2023-09-25 01:16:18
prion
prion
Memory corruption
2023-08-01 16:15:00
Memory corruption
2023-08-01 16:15:00
Design/Logic Flaw
2023-08-01 15:15:00
ubuntucve
ubuntucve
debiancve
debiancve
cve
cve
veracode
veracode
Arbitrary Code Execution
2023-08-06 12:07:56
Privilege Escalation
2023-08-06 12:06:35
Arbitrary Code Execution
2023-08-06 12:07:53
alpinelinux
alpinelinux
redhatcve
redhatcve
nvd
nvd
cvelist
cvelist
cnvd
cnvd
Mozilla Firefox and Firefox ESR Buffer Overflow Vulnerability
2023-08-03 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
69.1%
Related for UBUNTU_USN-6267-1.NASL