Oval Definition:oval:org.opensuse.security:def:202238476
Revision Date:2023-06-22Version:1
Title:CVE-2022-38476
Description:

A data race could occur in the PK11_ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR < 102.2 and Thunderbird < 102.2.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-38476
SUSE CVE-2022-38476
SUSE-SU-2022:3272-1
SUSE-SU-2022:3273-1
SUSE-SU-2022:3281-1
SUSE-SU-2022:3396-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • MozillaFirefox is affected
  • OR mozilla-nss is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR libfreebl3 is affected
  • OR libfreebl3-32bit is affected
  • OR libfreebl3-hmac is affected
  • OR libfreebl3-hmac-32bit is affected
  • OR libsoftokn3 is affected
  • OR libsoftokn3-32bit is affected
  • OR libsoftokn3-hmac is affected
  • OR libsoftokn3-hmac-32bit is affected
  • OR mozilla-nss is affected
  • OR mozilla-nss-32bit is affected
  • OR mozilla-nss-certs is affected
  • OR mozilla-nss-certs-32bit is affected
  • OR mozilla-nss-devel is affected
  • OR mozilla-nss-sysinit is affected
  • OR mozilla-nss-sysinit-32bit is affected
  • OR mozilla-nss-tools is affected
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND Package Information
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
  • OR libfreebl3 is affected
  • OR libfreebl3-32bit is affected
  • OR libfreebl3-hmac is affected
  • OR libfreebl3-hmac-32bit is affected
  • OR libsoftokn3 is affected
  • OR libsoftokn3-32bit is affected
  • OR libsoftokn3-hmac is affected
  • OR libsoftokn3-hmac-32bit is affected
  • OR mozilla-nss is affected
  • OR mozilla-nss-32bit is affected
  • OR mozilla-nss-certs is affected
  • OR mozilla-nss-certs-32bit is affected
  • OR mozilla-nss-devel is affected
  • OR mozilla-nss-sysinit is affected
  • OR mozilla-nss-tools is affected
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR libfreebl3 is affected
  • OR libfreebl3-32bit is affected
  • OR libfreebl3-hmac is affected
  • OR libfreebl3-hmac-32bit is affected
  • OR libsoftokn3 is affected
  • OR libsoftokn3-32bit is affected
  • OR libsoftokn3-hmac is affected
  • OR libsoftokn3-hmac-32bit is affected
  • OR mozilla-nss is affected
  • OR mozilla-nss-32bit is affected
  • OR mozilla-nss-certs is affected
  • OR mozilla-nss-certs-32bit is affected
  • OR mozilla-nss-devel is affected
  • OR mozilla-nss-sysinit is affected
  • OR mozilla-nss-sysinit-32bit is affected
  • OR mozilla-nss-tools is affected
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • MozillaFirefox-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-devel-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-common-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-other-102.11.0-150200.152.87.1 is installed
  • BACK