Lucene search

K
slackwareSlackware Linux ProjectSSA-2023-269-01
HistorySep 26, 2023 - 7:39 p.m.

[slackware-security] mozilla-firefox

2023-09-2619:39:20
Slackware Linux Project
www.slackware.com
22
slackware
mozilla-firefox
security fixes
upgrade
mozilla

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

47.8%

New mozilla-firefox packages are available for Slackware 15.0 and -current to
fix security issues.

Here are the details from the Slackware 15.0 ChangeLog:

patches/packages/mozilla-firefox-115.3.0esr-i686-1_slack15.0.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.3.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-42/
https://vulners.com/cve/CVE-2023-5168
https://vulners.com/cve/CVE-2023-5169
https://vulners.com/cve/CVE-2023-5171
https://vulners.com/cve/CVE-2023-5174
https://vulners.com/cve/CVE-2023-5176
(* Security fix *)

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/mozilla-firefox-115.3.0esr-i686-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/mozilla-firefox-115.3.0esr-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/mozilla-firefox-115.3.0esr-i686-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/mozilla-firefox-115.3.0esr-x86_64-1.txz

MD5 signatures:

Slackware 15.0 package:
c91ba9f9d6cd3b62204a03c8dd82626e mozilla-firefox-115.3.0esr-i686-1_slack15.0.txz

Slackware x86_64 15.0 package:
7efc84b546b6eec28063331e0a902ab8 mozilla-firefox-115.3.0esr-x86_64-1_slack15.0.txz

Slackware -current package:
69f28d2263cda144ba4e5ef354521230 xap/mozilla-firefox-115.3.0esr-i686-1.txz

Slackware x86_64 -current package:
46302b017a9b08f23e18898e1dfa16b5 xap/mozilla-firefox-115.3.0esr-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg mozilla-firefox-115.3.0esr-i686-1_slack15.0.txz

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

47.8%