Lucene search
RedHatRHSA-2022:6178HistoryAug 24, 2022 - 5:03 p.m.
(RHSA-2022:6178) Important: firefox security update
2022-08-2417:03:02
access.redhat.com
24
0.003 Low
EPSS
Percentile
65.7%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 91.13.0 ESR.
Security Fix(es):
-
Mozilla: Address bar spoofing via XSLT error handling (CVE-2022-38472)
-
Mozilla: Cross-origin XSLT Documents would have inherited the parent’s permissions (CVE-2022-38473)
-
Mozilla: Memory safety bugs fixed in Firefox 104 and Firefox ESR 102.2 (CVE-2022-38477)
-
Mozilla: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2, and Firefox ESR 91.13 (CVE-2022-38478)
-
Mozilla: Data race and potential use-after-free in PK11_ChangePW (CVE-2022-38476)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | firefox | < 91.13.0-1.el8_1 | firefox-91.13.0-1.el8_1.x86_64.rpm |
| RedHat | 8 | x86_64 | firefox-debugsource | < 91.13.0-1.el8_1 | firefox-debugsource-91.13.0-1.el8_1.x86_64.rpm |
| RedHat | 8 | ppc64le | firefox-debuginfo | < 91.13.0-1.el8_1 | firefox-debuginfo-91.13.0-1.el8_1.ppc64le.rpm |
| RedHat | 8 | ppc64le | firefox | < 91.13.0-1.el8_1 | firefox-91.13.0-1.el8_1.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox-debuginfo | < 91.13.0-1.el8_1 | firefox-debuginfo-91.13.0-1.el8_1.x86_64.rpm |
| RedHat | 8 | ppc64le | firefox-debugsource | < 91.13.0-1.el8_1 | firefox-debugsource-91.13.0-1.el8_1.ppc64le.rpm |
Related
nessus
nessus
Oracle Linux 8 : firefox (ELSA-2022-6175)
2022-08-25 00:00:00
Mozilla Firefox ESR < 102.2
2022-08-23 00:00:00
Oracle Linux 7 : thunderbird (ELSA-2022-6169)
2022-08-24 00:00:00
redhat
redhat
(RHSA-2022:6179) Important: firefox security update
2022-08-24 17:04:00
(RHSA-2022:6176) Important: firefox security update
2022-08-24 16:56:47
(RHSA-2022:6169) Important: thunderbird security update
2022-08-24 16:37:10
kaspersky
kaspersky
KLA15730 Multiple vulnerabilities in Mozilla Thunderbird
2022-08-23 00:00:00
KLA15728 Multiple vulnerabilities in Mozilla Firefox ESR
2022-08-23 00:00:00
KLA15727 Multiple vulnerabilities in Mozilla Firefox ESR
2022-08-23 00:00:00
osv
osv
Important: thunderbird security update
2022-08-24 15:28:25
Important: firefox security update
2022-08-24 00:00:00
Important: thunderbird security update
2022-08-24 00:00:00
almalinux
almalinux
Important: thunderbird security update
2022-08-24 00:00:00
Important: firefox security update
2022-08-24 00:00:00
Important: thunderbird security update
2022-08-24 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 102.2 — Mozilla
2022-08-23 00:00:00
Security Vulnerabilities fixed in Thunderbird 102.2 — Mozilla
2022-08-23 00:00:00
Security Vulnerabilities fixed in Firefox ESR 91.13 — Mozilla
2022-08-23 00:00:00
rocky
rocky
thunderbird security update
2022-08-24 15:28:25
firefox security update
2022-08-24 16:55:47
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 102.2.0-alt1
2022-08-24 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 102.2.0-alt1
2022-08-25 00:00:00
openvas
openvas
Mozilla Firefox ESR Security Advisory (MFSA2022-34) - Mac OS X
2022-08-25 00:00:00
CentOS: Security Advisory for firefox (CESA-2022:6179)
2022-09-02 00:00:00
Mozilla Firefox ESR Security Advisory (MFSA2022-34) - Windows
2022-08-25 00:00:00
oraclelinux
oraclelinux
firefox security update
2022-08-25 00:00:00
thunderbird security update
2022-08-25 00:00:00
firefox security update
2022-08-25 00:00:00
centos
centos
thunderbird security update
2022-09-01 22:01:42
firefox security update
2022-09-01 22:00:44
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-31 00:00:00
Mozilla Firefox: Multiple Vulnerabilities
2022-08-31 00:00:00
slackware
slackware
SSA-2022-0906204408
2022-09-06 20:44:08
[slackware-security] mozilla-thunderbird
2022-08-23 19:39:04
[slackware-security] mozilla-firefox
2022-08-23 19:38:49
ubuntu
ubuntu
Firefox vulnerabilities
2022-08-24 00:00:00
Thunderbird vulnerabilities
2022-10-07 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2022-09-05 00:00:00
Security update for MozillaThunderbird (important)
2022-09-15 00:00:00
debian
debian
[SECURITY] [DSA 5217-1] firefox-esr security update
2022-08-24 19:16:31
[SECURITY] [DLA 3080-1] firefox-esr security update
2022-08-24 20:10:43
[SECURITY] [DSA 5221-1] thunderbird security update
2022-08-29 20:31:19
mageia
mageia
Updated firefox/nss packages fix security vulnerability
2022-08-26 00:21:07
Updated thunderbird packages fix security vulnerability
2022-08-29 08:07:41
amazon
amazon
Important: thunderbird
2022-09-30 07:04:00
redos
redos
ROS-20221007-05
2022-10-07 00:00:00
ROS-20221007-04
2022-10-07 00:00:00
cvelist
cvelist
redhatcve
redhatcve
veracode
veracode
Use-After-Free
2022-09-04 11:46:30
Denial Of Service (DoS)
2022-09-04 11:46:09
Remote Code Execution
2022-09-04 11:46:10
debiancve
debiancve
alpinelinux
alpinelinux
prion
prion
Design/Logic Flaw
2022-12-22 20:15:00
Memory corruption
2022-12-22 20:15:00
Memory corruption
2022-12-22 20:15:00
nvd
nvd
ubuntucve
ubuntucve
cve
cve