Univention Bugzilla – Bug 54955
firefox-esr: Multiple issues (5.0)
Last modified: 2022-07-13 17:00:55 CEST
New Debian firefox-esr 91.11.0esr-1~deb10u1 fixes: This update addresses the following issues: * Undesired attributes could be set as part of prototype pollution (CVE-2022-2200) * CSP bypass enabling stylesheet injection (CVE-2022-31744) * CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI (CVE-2022-34468) * Use-after-free in nsSHistory (CVE-2022-34470) * Unavailable PAC file resulted in OCSP requests being blocked (CVE-2022-34472) * A popup window could be resized in a way to overlay the address bar with web content (CVE-2022-34479) * Potential integer overflow in ReplaceElementsAt (CVE-2022-34481) * Memory safety bugs fixed in Firefox 102 and Firefox ESR 91.11 (CVE-2022-34484)
--- mirror/ftp/pool/main/f/firefox-esr/firefox-esr_91.10.0esr-1~deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/firefox-esr_91.11.0esr-1~deb10u1.dsc @@ -1,3 +1,14 @@ +91.11.0esr-1~deb10u1 [Wed, 29 Jun 2022 06:30:12 +0900] Mike Hommey <glandium@debian.org>: + + * New upstream release. + * Fixes for mfsa2022-25, also known as: + CVE-2022-34479, CVE-2022-34470, CVE-2022-34468, CVE-2022-34481, + CVE-2022-31744, CVE-2022-34472, CVE-2022-2200, CVE-2022-34484. + + * build/moz.configure/bindgen.configure, + gfx/webrender_bindings/webrender_ffi.h: Work around build failure with + newer cbindgen. bz#1773259 + 91.10.0esr-1~deb10u1 [Wed, 01 Jun 2022 05:24:22 +0900] Mike Hommey <glandium@debian.org>: * New upstream release. <http://piuparts.knut.univention.de/5.0-2/#3386405174991669480>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] bf18aa6708 Bug #54955: firefox-esr 91.11.0esr-1~deb10u1 doc/errata/staging/firefox-esr.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) [5.0-2] 2ca2a09bae Bug #54955: firefox-esr 91.11.0esr-1~deb10u1 doc/errata/staging/firefox-esr.yaml | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x346>