Oval Definition:	oval:org.opensuse.security:def:202334415
Revision Date: 2023-06-22 Version: 1 Title: CVE-2023-34415 Description: When choosing a site-isolated process for a document loaded from a data: URL that was the result of a redirect, Firefox would load that document in the same process as the site that issued the redirect. This bypassed the site-isolation protections against Spectre-like attacks on sites that host an "open redirect". Firefox no longer follows HTTP redirects to data: URLs. This vulnerability affects Firefox < 114. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2023-34415 SUSE CVE-2023-34415 Platform(s): SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Linux Enterprise Workstation Extension 15 SP5 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 15 SP5 is installed AND Package Information MozillaThunderbird is affected OR MozillaThunderbird-translations-common is affected OR MozillaThunderbird-translations-other is affected
BACK