SUSE-SU-2022:4461-1 -- SLES MozillaFirefox| ID: oval:org.secpod.oval:def:89048033 | Date: (C)2023-01-04 (M)2023-11-10 |
| Class: PATCH | Family: unix |
This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 102.6.0 ESR : - CVE-2022-46880: Use-after-free in WebGL - CVE-2022-46872: Arbitrary file read from a compromised content process - CVE-2022-46881: Memory corruption in WebGL - CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions - CVE-2022-46875: Download Protections were bypassed by .atloc and .ftploc files on Mac OS - CVE-2022-46882: Use-after-free in WebGL - CVE-2022-46878: Memory safety bugs fixed in Firefox 108 and Firefox ESR 102.6
| Platform: |
| SUSE Linux Enterprise Server 15 |
| SUSE Linux Enterprise Server 15 SP1 |
