Security Vulnerabilities fixed in Firefox ESR 115.23 — Mozilla

Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the user-privileged process, an attacker could bypass intended access controls, allowing SYSTEM-level file...

OPENSUSE-SU-2023:0278-1 Security update for seamonkey

This update for seamonkey fixes the following issues: update to SeaMonkey 2.53.17.1 Upstream libwebp security fix bug 1852749. CVE-2023-4863: Heap buffer overflow in libwebp bug 1852649. Fix bad string encoded in ansi. l10n fr problem only bug 1847887. SeaMonkey 2.53.17 uses the same backend as...

Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data

Microsoft on Monday disclosed details of a recently patched security vulnerability in Apple's macOS operating system that could be weaponized by a threat actor to expose users' personal information. Tracked as CVE-2021-30970, the flaw concerns a logic issue in the Transparency, Consent and Contro...