NewStart CGSL MAIN 7.02 : firefox Multiple Vulnerabilities (NS-SA-2025-0109)

The remote NewStart CGSL host, running version MAIN 7.02, has firefox packages installed that are affected by multiple vulnerabilities: - Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc...

Important: firefox

Issue Overview: A double-free in libwebp could have led to memory corruption and a potentially exploitable crash. CVE-2023-1999 In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks...

DEBIAN-CVE-2023-32212

An attacker could have positioned a datalist element to obscure the address bar. This vulnerability affects Firefox 113, Firefox ESR 102.11, and Thunderbird 102.11...

CVE-2023-32212

The CVE-2023-32212 issue is a UI spoofing vulnerability in Mozilla Firefox and Thunderbird where an attacker could position a datalist element to obscure the address bar. Affected products include Firefox versions before 113, Firefox ESR before 102.11, and Thunderbird before 102.11. The connected...

CVE-2023-32212

An attacker could have positioned a datalist element to obscure the address bar. This vulnerability affects Firefox 113, Firefox ESR 102.11, and Thunderbird 102.11...

AlmaLinux 8 : thunderbird (ALSA-2023:3221)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3221 advisory. - In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofin...

Oracle Linux 9 : firefox (ELSA-2023-3143)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3143 advisory. 102.11.0-2.0.1 - Updated homepages to use https Orabug: 34648274 102.11.0-2 - Update to 102.11.0 build2 102.11.0-1 - Update to 102.11.0 build1 Tenable...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

AlmaLinux 9 : thunderbird (ALSA-2023:3150)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3150 advisory. - In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofin...

Rocky Linux 8 : thunderbird (RLSA-2023:3221)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:3221 advisory. - In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Updated firefox/nss/rootcerts packages fix security vulnerability

In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks CVE-2023-32205. An out-of-bounds read could have led to a crash in the RLBox Expat driver CVE-2023-32206. A missing delay in popup...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...

Mozilla: Potential spoof due to obscured address bar

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have positioned a datalist element to obscure the address bar...