[ALSA-2023:4462] Important: firefox security update
Release date:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.14.0 ESR. Security Fix(es): * Mozilla: Offscreen Canvas could have bypassed cross-origin restrictions (CVE-2023-4045) * Mozilla: Incorrect value used during WASM compilation (CVE-2023-4046) * Mozilla: Potential permissions request bypass via clickjacking (CVE-2023-4047) * Mozilla: Crash in DOMParser due to out-of-memory conditions (CVE-2023-4048) * Mozilla: Fix potential race conditions when releasing platform objects (CVE-2023-4049) * Mozilla: Stack buffer overflow in StorageManager (CVE-2023-4050) * Mozilla: Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14 (CVE-2023-4056) * Mozilla: Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1 (CVE-2023-4057) * Mozilla: Cookie jar overflow caused unexpected cookie jar state (CVE-2023-4055) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 firefox-102.14.0-1.el9_2.alma.aarch64.rpm 6a6f2b9ec51e4882b23934f1f8a0689bec6829d413fdc2f61541fba827e64531
aarch64 firefox-x11-102.14.0-1.el9_2.alma.aarch64.rpm ad12dfea20e6cea3cf5e56ad6cb012fbd796056f08eb0c5dcd3044178ca823b5
ppc64le firefox-x11-102.14.0-1.el9_2.alma.ppc64le.rpm 29c6a18cc4a125c4194e602c3c0ccc706b8d4c86c2992ff8c979271c159c6208
ppc64le firefox-102.14.0-1.el9_2.alma.ppc64le.rpm b4ca81005653bb784571030b4f9c0968fa10cf3ec61f3575cac0fed565bb26d0
s390x firefox-102.14.0-1.el9_2.alma.s390x.rpm 45e861c6a706802294e4a762890059b9e537e1eefb41a906e366775ec3f20a91
s390x firefox-x11-102.14.0-1.el9_2.alma.s390x.rpm 776763558c8da966849330725ec838e1537dabc2506c2784fc8d4a8a3acbb283
x86_64 firefox-x11-102.14.0-1.el9_2.alma.x86_64.rpm 433e420fea5fd879d35fed749562b31ea02b60cdaaf187f77466a8d177391fd9
x86_64 firefox-102.14.0-1.el9_2.alma.x86_64.rpm fa38cf905e9283cffe8bb5d07f52e338964bb50a9de0142efeaed9bcd5aef9b8
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.