rpm package
suse/MozillaFirefox&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP6
pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6
Vulnerabilities (203)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-3852 | Hig | 7.5 | < 115.11.0-150200.152.137.2 | 115.11.0-150200.152.137.2 | Apr 16, 2024 | GetBoundName could return the wrong version of an object when JIT optimizations were applied. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10. | |
| CVE-2024-3302 | Low | 3.7 | < 115.11.0-150200.152.137.2 | 115.11.0-150200.152.137.2 | Apr 16, 2024 | There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server could abuse this to create an Out of Memory condition in the browser. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10. | |
| CVE-2024-2609 | Med | 6.1 | < 115.11.0-150200.152.137.2 | 115.11.0-150200.152.137.2 | Mar 19, 2024 | The permission prompt input delay could expire while the window is not in focus. This makes it vulnerable to clickjacking by malicious websites. This vulnerability affects Firefox < 124, Firefox ESR < 115.10, and Thunderbird < 115.10. |
- affected < 115.11.0-150200.152.137.2fixed 115.11.0-150200.152.137.2
GetBoundName could return the wrong version of an object when JIT optimizations were applied. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.
- affected < 115.11.0-150200.152.137.2fixed 115.11.0-150200.152.137.2
There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server could abuse this to create an Out of Memory condition in the browser. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.
- affected < 115.11.0-150200.152.137.2fixed 115.11.0-150200.152.137.2
The permission prompt input delay could expire while the window is not in focus. This makes it vulnerable to clickjacking by malicious websites. This vulnerability affects Firefox < 124, Firefox ESR < 115.10, and Thunderbird < 115.10.
Page 11 of 11