Download
| Alert*
|
oval:org.secpod.oval:def:2600533
Mozilla Firefox is an open-source web browser, designed for standards oval:org.secpod.oval:def:509153 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.9.1 ESR. Security Fix: nss: timing attack against RSA decryption Mozilla: Crash in NSS TLS method Mozilla: JIT code failed to save return regi ... oval:org.secpod.oval:def:89051691 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 115.9.1esr ESR MFSA 2024-16 * CVE-2024-29944: Privileged JavaScript Execution via Event Handlers . oval:org.secpod.oval:def:708851 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:98606 The host is missing a critical security update according to the Mozilla advisory MFSA2024-16 and is prone to multiple vulnerabilities. The flaws are present in the application, which fails to properly handle various components. Successful exploitation could lead to multiple impacts. oval:org.secpod.oval:def:89051698 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 115.9.1esr ESR MFSA 2024-16 . * CVE-2024-29944: Privileged JavaScript Execution via Event Handlers . Firefox Extended Support Release 115.9.0 ESR : * CVE-2024-0743: Crash in NSS TLS method . * CVE-2024-2605: ... oval:org.secpod.oval:def:98607 The host is missing a critical security update according to the Mozilla advisory MFSA2024-16 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues related to event handler. On successful exploitation, an attacker was able to ... oval:org.secpod.oval:def:98608 Mozilla Firefox 124.0.1 Mozilla Firefox ESR 115.9.1 : An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. oval:org.secpod.oval:def:98602 The host is missing a critical security update according to the Mozilla advisory MFSA2024-16 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues related to event handler. On successful exploitation, an attacker was able to ... oval:org.secpod.oval:def:206077 Security Fix: nss: timing attack against RSA decryption Mozilla: Crash in NSS TLS method Mozilla: JIT code failed to save return registers on Armv7-A Mozilla: Integer overflow could have led to out of bounds write Mozilla: Improve handling of out-of-memory conditions in ICU Mozilla: Improper ha ... oval:org.secpod.oval:def:98603 The host is missing a critical security update according to the Mozilla advisory MFSA2024-15 and is prone to multiple vulnerabilities. The flaws are present in the application, which fails to properly handle various components. Successful exploitation could lead to arbitrary JavaScript execution or ... oval:org.secpod.oval:def:4501543 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.9.1 ESR. Security Fix: * nss: timing attack against RSA decryption * Mozilla: Crash in NSS TLS method * Mozilla: JIT code failed to save retur ... oval:org.secpod.oval:def:98605 Mozilla Firefox 124.0.1 Mozilla Firefox ESR 115.9.1 : An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. oval:org.secpod.oval:def:509156 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.9.1 ESR. Security Fix: nss: timing attack against RSA decryption Mozilla: Crash in NSS TLS method Mozilla: JIT code failed to save return regi ... oval:org.secpod.oval:def:509157 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.9.1 ESR. Security Fix: nss: timing attack against RSA decryption Mozilla: Crash in NSS TLS method Mozilla: JIT code failed to save return regi ... oval:org.secpod.oval:def:2501359 Mozilla Firefox is an open-source web browser, designed for standards oval:org.secpod.oval:def:99560 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:613028 Manfred Paul discovered a flaw in the Mozilla Firefox web browser, allowing an attacker to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. oval:org.secpod.oval:def:1702221 'AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding' and 'AppendEncodedCharacters' could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write. This vulnerability affects Firefox less than 124, Firefox ESR less than 115.9, and Thu ... oval:org.secpod.oval:def:1507408 [115.9.1.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding OpenELA file [115.9.1] - Add debranding patches - Add OpenELA default preferences [115.9.1-1] - Update to 115.9.1 [115.9.0-2] - Update to 115.9.0 build2 [115.9.0-1] - Update to 115.9.0 build1 - Fix expat CVE-2023-5242 ... oval:org.secpod.oval:def:1702245 An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. This vulnerability affects Firefox less than 124.0.1 and Firefox ESR less than 115.9.1. There was no limit to the number of HTTP/2 CONTINUATION frames that ... oval:org.secpod.oval:def:1507415 [115.9.1-1.0.1] - Remove upstream references [Orabug: 30143292] - Update distribution for Oracle Linux [Orabug: 30143292] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file [115.9.1-1] - Update to 115.9.1 [115.9.0-2] - Update to 115.9.0 build2 [115.9.0-1] - Update to 115 ... oval:org.secpod.oval:def:1507407 [115.9.1.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding OpenELA file [115.9.1] - Add debranding patches - Add OpenELA default preferences [115.9.1-1] - Update to 115.9.1 [115.9.0-2] - Update to 115.9.0 build2 [115.9.0-1] - Update to 115.9.0 build1 - Fix expat CVE-2023-5242 ... |
