Lucene search
RedHatRHSA-2022:1704HistoryMay 04, 2022 - 11:04 a.m.
(RHSA-2022:1704) Important: firefox security update
2022-05-0411:04:22
access.redhat.com
18
0.002 Low
EPSS
Percentile
52.6%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 91.9.0 ESR.
Security Fix(es):
-
Mozilla: Bypassing permission prompt in nested browsing contexts (CVE-2022-29909)
-
Mozilla: iframe Sandbox bypass (CVE-2022-29911)
-
Mozilla: Fullscreen notification bypass using popups (CVE-2022-29914)
-
Mozilla: Leaking browser history with CSS variables (CVE-2022-29916)
-
Mozilla: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 (CVE-2022-29917)
-
Mozilla: Reader mode bypassed SameSite cookies (CVE-2022-29912)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | firefox | < 91.9.0-1.el8_2 | firefox-91.9.0-1.el8_2.x86_64.rpm |
| RedHat | 8 | s390x | firefox-debugsource | < 91.9.0-1.el8_2 | firefox-debugsource-91.9.0-1.el8_2.s390x.rpm |
| RedHat | 8 | aarch64 | firefox-debuginfo | < 91.9.0-1.el8_2 | firefox-debuginfo-91.9.0-1.el8_2.aarch64.rpm |
| RedHat | 8 | s390x | firefox-debuginfo | < 91.9.0-1.el8_2 | firefox-debuginfo-91.9.0-1.el8_2.s390x.rpm |
| RedHat | 8 | ppc64le | firefox-debuginfo | < 91.9.0-1.el8_2 | firefox-debuginfo-91.9.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox-debugsource | < 91.9.0-1.el8_2 | firefox-debugsource-91.9.0-1.el8_2.x86_64.rpm |
| RedHat | 8 | ppc64le | firefox-debugsource | < 91.9.0-1.el8_2 | firefox-debugsource-91.9.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | ppc64le | firefox | < 91.9.0-1.el8_2 | firefox-91.9.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox-debuginfo | < 91.9.0-1.el8_2 | firefox-debuginfo-91.9.0-1.el8_2.x86_64.rpm |
| RedHat | 8 | aarch64 | firefox-debugsource | < 91.9.0-1.el8_2 | firefox-debugsource-91.9.0-1.el8_2.aarch64.rpm |
Related
centos
centos
firefox security update
2022-05-06 16:01:51
thunderbird security update
2022-05-06 16:02:55
nessus
nessus
Rocky Linux 8 : firefox (RLSA-2022:1705)
2023-11-07 00:00:00
RHEL 8 : firefox (RHSA-2022:1705)
2022-05-04 00:00:00
AlmaLinux 9 : firefox (ALSA-2022:4590)
2022-11-16 00:00:00
openvas
openvas
CentOS: Security Advisory for firefox (CESA-2022:1703)
2022-05-07 00:00:00
openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:1748-1)
2022-05-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1731-1)
2022-05-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 91.9.0-alt1
2022-05-04 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 91.9.0-alt1
2022-05-04 00:00:00
redhat
redhat
(RHSA-2022:1702) Important: firefox security update
2022-05-04 11:04:13
(RHSA-2022:1701) Important: firefox security update
2022-05-04 11:04:10
(RHSA-2022:4590) Important: firefox security update
2022-05-18 00:11:05
debian
debian
[SECURITY] [DSA 5129-1] firefox-esr security update
2022-05-04 18:03:17
[SECURITY] [DLA 2994-1] firefox-esr security update
2022-05-05 12:25:21
[SECURITY] [DSA 5141-1] thunderbird security update
2022-05-19 21:12:58
almalinux
almalinux
Important: firefox security update
2022-05-04 11:04:22
Important: thunderbird security update
2022-05-05 13:32:08
redos
redos
ROS-20220518-01
2022-05-18 00:00:00
ROS-20220518-02
2022-05-18 00:00:00
osv
osv
Important: firefox security update
2022-05-04 11:04:22
Important: firefox security update
2022-05-04 11:04:22
firefox-esr - security update
2022-05-04 00:00:00
kaspersky
kaspersky
KLA12521 Multiple vulnerabilities in Mozilla Firefox ESR
2022-05-03 00:00:00
KLA12522 Multiple vulnerabilities in Mozilla Thunderbird
2022-05-03 00:00:00
KLA12520 Multiple vulnerabilities in Mozilla Firefox
2022-05-03 00:00:00
oraclelinux
oraclelinux
firefox security update
2022-05-04 00:00:00
firefox security update
2022-06-30 00:00:00
firefox security update
2022-05-04 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2022-05-19 00:00:00
Security update for MozillaThunderbird (important)
2022-05-17 00:00:00
rocky
rocky
firefox security update
2022-05-04 11:04:22
thunderbird security update
2022-05-05 13:32:08
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 91.9 — Mozilla
2022-05-03 00:00:00
Security Vulnerabilities fixed in Thunderbird 91.9 — Mozilla
2022-05-03 00:00:00
Security Vulnerabilities fixed in Firefox 100 — Mozilla
2022-05-03 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2022-05-06 23:16:39
Updated thunderbird packages fix security vulnerability
2022-05-06 23:16:39
archlinux
archlinux
[ASA-202205-4] firefox: multiple issues
2022-05-16 00:00:00
[ASA-202205-3] thunderbird: multiple issues
2022-05-16 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2022-05-11 00:00:00
Thunderbird vulnerabilities
2022-05-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-05-07 02:19:14
Authentication Bypass
2022-05-07 02:03:54
Remote Code Execution (RCE)
2022-05-07 01:36:26
redhatcve
redhatcve
nvd
nvd
prion
prion
Design/Logic Flaw
2022-12-22 20:15:00
Cross site scripting
2022-12-22 20:15:00
Spoofing
2022-12-22 20:15:00
cvelist
cvelist
alpinelinux
alpinelinux
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
cnvd
cnvd
Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2023-59954)
2022-05-08 00:00:00
Mozilla Firefox Input Validation Error Vulnerability (CNVD-2023-03059)
2023-01-06 00:00:00
ibm
ibm
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2022-08-10 00:00:00
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-10 00:00:00