4 matches found
SUSE-SU-2022:2062-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 91.9.1 MFSA 2022-19 bsc1199768: - CVE-2022-1802: Prototype pollution in Top-Level Await implementation bmo1770137. - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype...
Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution
The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...
Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution
The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...
MGASA-2022-0207 Updated firefox/thunderbird packages fix security vulnerability
Prototype pollution in Top-Level Await implementation. CVE-2022-1802 Untrusted input used in JavaScript object indexing, leading to prototype pollution. CVE-2022-1529...