Oval Definition:oval:org.opensuse.security:def:202329539
Revision Date:2023-06-22Version:1
Title:CVE-2023-29539
Description:

When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2023-29539
SUSE CVE-2023-29539
SUSE-SU-2023:1817-1
SUSE-SU-2023:1819-1
SUSE-SU-2023:1855-1
SUSE-SU-2023:2064-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Workstation Extension 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP5 is installed
  • AND
  • MozillaThunderbird is affected
  • OR MozillaThunderbird-translations-common is affected
  • OR MozillaThunderbird-translations-other is affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • MozillaFirefox-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-devel-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-common-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-other-102.11.0-150200.152.87.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • MozillaFirefox-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-devel-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-common-102.11.0-150200.152.87.1 is installed
  • OR MozillaFirefox-translations-other-102.11.0-150200.152.87.1 is installed
    • BACK