SUSE-SU-2023:3837-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89049574 | Date: (C)2023-11-28 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 115.3.0 ESR : Security fixes: * CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1 . * CVE-2023-5169: Out-of-bounds write in PathOps . * CVE-2023-5171: Use-after-free in Ion Compiler . * CVE-2023-5174: Double-free in process spawning on Windows . * CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3 . Other fixes: * Fix broken build with newer binutils
Platform: |
SUSE Linux Enterprise Server 12 SP5 |