rpm package
suse/MozillaFirefox&distro=SUSE Linux Enterprise Real Time 15 SP2
pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2
Vulnerabilities (23)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-1196 | — | < 91.8.0-150200.152.26.1 | 91.8.0-150200.152.26.1 | Dec 22, 2022 | After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8 and Firefox ESR < 91.8. | ||
| CVE-2022-1097 | — | < 91.8.0-150200.152.26.1 | 91.8.0-150200.152.26.1 | Dec 22, 2022 | NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8. | ||
| CVE-2022-24713 | — | < 91.8.0-150200.152.26.1 | 91.8.0-150200.152.26.1 | Mar 8, 2022 | regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane |
- CVE-2022-1196Dec 22, 2022affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1
After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8 and Firefox ESR < 91.8.
- CVE-2022-1097Dec 22, 2022affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1
NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.
- CVE-2022-24713Mar 8, 2022affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane
Page 2 of 2