Lucene search
RedHatRHSA-2023:4069HistoryJul 13, 2023 - 7:34 a.m.
(RHSA-2023:4069) Important: firefox security update
2023-07-1307:34:22
access.redhat.com
11
mozilla
firefox
security update
webrtc certificate
spidermonkey
memory safety
fullscreen notification
diagcab files
cve-2023-37201
cve-2023-37202
cve-2023-37211
cve-2023-37207
cve-2023-37208
unix
0.001 Low
EPSS
Percentile
43.8%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 102.13.0 ESR.
Security Fix(es):
-
Mozilla: Use-after-free in WebRTC certificate generation (CVE-2023-37201)
-
Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey (CVE-2023-37202)
-
Mozilla: Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13 (CVE-2023-37211)
-
Mozilla: Fullscreen notification obscured (CVE-2023-37207)
-
Mozilla: Lack of warning when opening Diagcab files (CVE-2023-37208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | firefox-debugsource | < 102.13.0-2.el8_6 | firefox-debugsource-102.13.0-2.el8_6.x86_64.rpm |
| RedHat | 8 | s390x | firefox | < 102.13.0-2.el8_6 | firefox-102.13.0-2.el8_6.s390x.rpm |
| RedHat | 8 | s390x | firefox-debuginfo | < 102.13.0-2.el8_6 | firefox-debuginfo-102.13.0-2.el8_6.s390x.rpm |
| RedHat | 8 | ppc64le | firefox-debugsource | < 102.13.0-2.el8_6 | firefox-debugsource-102.13.0-2.el8_6.ppc64le.rpm |
| RedHat | 8 | aarch64 | firefox | < 102.13.0-2.el8_6 | firefox-102.13.0-2.el8_6.aarch64.rpm |
| RedHat | 8 | s390x | firefox-debugsource | < 102.13.0-2.el8_6 | firefox-debugsource-102.13.0-2.el8_6.s390x.rpm |
| RedHat | 8 | ppc64le | firefox | < 102.13.0-2.el8_6 | firefox-102.13.0-2.el8_6.ppc64le.rpm |
| RedHat | 8 | ppc64le | firefox-debuginfo | < 102.13.0-2.el8_6 | firefox-debuginfo-102.13.0-2.el8_6.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox | < 102.13.0-2.el8_6 | firefox-102.13.0-2.el8_6.x86_64.rpm |
| RedHat | 8 | aarch64 | firefox-debugsource | < 102.13.0-2.el8_6 | firefox-debugsource-102.13.0-2.el8_6.aarch64.rpm |
Related
debian
debian
[SECURITY] [DLA 3490-1] thunderbird security update
2023-07-11 07:27:23
[SECURITY] [DLA 3484-1] firefox-esr security update
2023-07-07 22:05:25
[SECURITY] [DSA 5450-1] firefox-esr security update
2023-07-07 17:43:57
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0235)
2023-07-20 00:00:00
Debian: Security Advisory (DSA-5450-1)
2023-07-10 00:00:00
Slackware: Security Advisory (SSA:2023-188-01)
2023-07-10 00:00:00
nessus
nessus
Debian DSA-5450-1 : firefox-esr - security update
2023-07-08 00:00:00
Debian DLA-3484-1 : firefox-esr - LTS security update
2023-07-08 00:00:00
RHEL 8 : thunderbird (RHSA-2023:4067)
2023-07-13 00:00:00
osv
osv
Important: thunderbird security update
2023-07-13 00:00:00
Important: firefox security update
2023-07-13 00:00:00
Important: firefox security update
2023-07-19 17:53:48
redhat
redhat
(RHSA-2023:4067) Important: thunderbird security update
2023-07-13 07:33:19
(RHSA-2023:4070) Important: firefox security update
2023-07-13 07:34:27
(RHSA-2023:4076) Important: firefox security update
2023-07-13 07:37:07
slackware
slackware
[slackware-security] mozilla-thunderbird
2023-07-07 23:09:17
[slackware-security] mozilla-firefox
2023-07-04 20:26:36
almalinux
almalinux
Important: thunderbird security update
2023-07-13 00:00:00
Important: firefox security update
2023-07-13 00:00:00
Important: thunderbird security update
2023-07-13 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2023-07-17 00:00:00
thunderbird security update
2023-07-17 00:00:00
firefox security update
2023-07-17 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 102.13 — Mozilla
2023-07-04 00:00:00
Security Vulnerabilities fixed in Thunderbird 102.13 — Mozilla
2023-07-04 00:00:00
Security Vulnerabilities fixed in Firefox 115 — Mozilla
2023-07-04 00:00:00
kaspersky
kaspersky
KLA50558 Multiple vulnerabilities in Mozilla Firefox ESR
2023-07-04 00:00:00
KLA50559 Multiple vulnerabilities in Mozilla Thunderbird
2023-07-04 00:00:00
KLA50557 Multiple vulnerabilities in Mozilla Firefox
2023-07-04 00:00:00
mageia
mageia
Updated firefox/nss packages fix security vulnerability
2023-07-19 22:53:31
rocky
rocky
firefox security update
2023-08-31 16:54:34
firefox security update
2023-07-19 17:53:48
thunderbird security update
2023-08-31 16:54:34
amazon
amazon
Important: thunderbird
2023-07-20 17:28:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-07-11 00:00:00
SpiderMonkey vulnerabilities
2023-07-13 00:00:00
Firefox vulnerabilities
2023-07-05 00:00:00
redos
redos
ROS-20230908-07
2023-09-08 00:00:00
ROS-20230919-04
2023-09-19 00:00:00
cvelist
cvelist
veracode
veracode
Out-of-bounds Write
2023-08-06 22:03:38
Unsafe Reflection
2023-08-06 22:04:48
Use After Free
2023-08-06 21:51:00
alpinelinux
alpinelinux
nvd
nvd
cve
cve
debiancve
debiancve
prion
prion
Race condition
2023-07-05 09:15:00
Code injection
2023-07-05 09:15:00
Memory corruption
2023-07-05 10:15:00
ubuntucve
ubuntucve
redhatcve
redhatcve
cnvd
cnvd
Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2023-59026)
2023-07-10 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm