VYPR

rpm package

suse/MozillaFirefox&distro=SUSE Linux Enterprise Real Time 15 SP2

pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2

Vulnerabilities (23)

  • CVE-2022-1196Dec 22, 2022
    affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1

    After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8 and Firefox ESR < 91.8.

  • CVE-2022-1097Dec 22, 2022
    affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1

    NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.

  • CVE-2022-24713Mar 8, 2022
    affected < 91.8.0-150200.152.26.1fixed 91.8.0-150200.152.26.1

    regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane

Page 2 of 2