SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2022:1577-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1577-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially...

CVE-2021-29991

Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting attack against servers using HTTP/3. This vulnerability affects Firefox 91.0.1 and Thunderbird 91.0.1...

openSUSE 15 Security Update : MozillaFirefox (openSUSE-SU-2021:1367-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1367-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially exploitable...

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:3451-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3451-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially exploitab...

SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:3331-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3331-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially...

SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2021:14821-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14821-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially exploitable crash...

SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2021:3191-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3191-1 advisory. - Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potential...

Fedora 34 : firefox (2021-74b76e593a)

The remote Fedora 34 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-74b76e593a advisory. - Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting attack against...

Header Splitting Attack

firefox:sid is vulnerable to header splitting attack. Firefox incorrectly accepted a newline in a HTTP/3 header, interpreting it as two separate headers, allowing a header splitting attack against servers using HTTP/3...

USN-5047-1: Firefox vulnerability

It was discovered that Firefox could be made to incorrectly accept newlines in HTTP/3 response headers. If a user were tricked into opening a specially crafted website, an attacker could exploit this to conduct header splitting attacks...

Mozilla Thunderbird < 91.0.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-37 advisory. - Firefox incorrectly accepted a newline in a HTTP/3 header, interpreting it as two separate headers. This allowed...

Mozilla Firefox < 91.0.1

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 91.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-37 advisory. - Firefox incorrectly accepted a newline in a HTTP/3 header, interpreting it as two separate headers. This allowed for...

Fortinet FortiManager和Fortinet FortiAnalyzer 环境问题漏洞

Fortinet FortiManager is a centralized network security management platform from Fortinet, Inc. Fortinet FortiAnalyzer is a centralized network security reporting solution that allows for centralized management of any number of Fortinet devices and the ability to group devices into different...