Linux Distros Unpatched Vulnerability : CVE-2022-40962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox...

CentOS 7 : firefox (RHSA-2022:6711)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6711 advisory. - When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This...

Amazon Linux 2 : firefox (ALASFIREFOX-2023-010)

The version of firefox installed on the remote host is prior to 102.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-010 advisory. 2023-09-27: CVE-2021-28429 was added to this advisory. Integer overflow vulnerability in avtimecodemakestring in...

CVE-2022-40962

creationtimestamp| type| source ---|---|--- 2022-12-22 22:30:08+00:00| seen| https://t.me/cibsecurity/55189...

CVE-2022-40962

Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these...

CVE-2022-40962

CVE-2022-40962 is a memory safety issue in Firefox 104 and Firefox ESR 102.2 reported by Mozilla Fuzzing Team. The connected documents confirm memory corruption indicators and state that, with enough effort, some bugs could be exploited to run arbitrary code. The vulnerability affects Firefox ESR...

AlmaLinux 9 : thunderbird (ALSA-2022:6717)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6717 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

Security fix for the ALT Linux 10 package firefox-esr version 102.3.0-alt1

Oct. 10, 2022 Pavel Vasenkov 102.3.0-alt1 - New ESR version. - Security fixes: + CVE-2022-3266 Out of bounds read when decoding H264 + CVE-2022-40959 Bypassing FeaturePolicy restrictions on transient pages + CVE-2022-40960 Data-race when parsing non-UTF-8 URLs in threads + CVE-2022-40958 Bypassin...

Security fix for the ALT Linux 10 package thunderbird version 102.3.0-alt1

Oct. 9, 2022 Pavel Vasenkov 102.3.0-alt1 - New version. - Security fixes: + CVE-2022-3266 Out of bounds read when decoding H264 + CVE-2022-40959 Bypassing FeaturePolicy restrictions on transient pages + CVE-2022-40960 Data-race when parsing non-UTF-8 URLs in threads + CVE-2022-40958 Bypassing...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:3440-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3440-1 advisory. - When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's bas...

Oracle Linux 9 : firefox (ELSA-2022-6700)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-6700 advisory. 102.3.0-6.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.3.0-6 - Update to 102.3...

SUSE: Security Advisory (SUSE-SU-2022:3441-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:3440-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3123-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3123-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort September 27, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 5238-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5238-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 27, 2022 https://www.debian.org/security/faq -...

SUSE: Security Advisory (SUSE-SU-2022:3396-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:3396-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...