8 matches found
Astra Linux – Vulnerability in Firefox
If an attacker needed a user to load an insecure http: page and knew that the user had enabled HTTPS-only mode, the attacker could trick the user into clicking to grant an HTTPS-only exception, provided they could get the user to participate in a clicking game. This vulnerability affects Firefox...
Linux Distros Unpatched Vulnerability : CVE-2023-6208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboar...
Linux Distros Unpatched Vulnerability : CVE-2023-6207
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...
Linux Distros Unpatched Vulnerability : CVE-2023-6206
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to...
SUSE CVE-2023-6209
Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problems in web sites. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...
DEBIAN-CVE-2023-6208
When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. This bug only affects Firefox on X11. Other systems are unaffected. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and...
UBUNTU-CVE-2023-6207
Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...
UBUNTU-CVE-2023-6205
It was possible to cause the use of a MessagePort after it had already been freed, which could potentially have led to an exploitable crash. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...