Oval Definition:oval:org.opensuse.security:def:125728
Revision Date:2022-06-02Version:1
Title:Security update for MozillaFirefox (Important)
Description:

This update for MozillaFirefox fixes the following issues:

Firefox Extended Support Release 91.10.0 ESR (MFSA 2022-21)(bsc#1200027)

- CVE-2022-31736: Cross-Origin resource's length leaked - CVE-2022-31737: Heap buffer overflow in WebGL - CVE-2022-31738: Browser window spoof using fullscreen mode - CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files - CVE-2022-31740: Register allocation problem in WASM on arm64 - CVE-2022-31741: Uninitialized variable leads to invalid memory read - CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information - CVE-2022-31747: Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10
Family:unixClass:patch
Status:Reference(s):1200027
CVE-2022-31736
CVE-2022-31737
CVE-2022-31738
CVE-2022-31739
CVE-2022-31740
CVE-2022-31741
CVE-2022-31742
CVE-2022-31747
SUSE-SU-2022:1921-1
Platform(s):SUSE Linux Enterprise Server for SAP Applications 12 SP4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-91.10.0-112.114.1 is installed
  • OR MozillaFirefox-devel-91.10.0-112.114.1 is installed
  • OR MozillaFirefox-translations-common-91.10.0-112.114.1 is installed
  • BACK