firefox-102.15.1-1.el9.ML.1
エラータID: AXSA:2023-6450:36
Release date:
Thursday, September 28, 2023 - 01:25
Subject:
firefox-102.15.1-1.el9.ML.1
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 102.15.1 ESR.
Security Fix(es):
* libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Solution:
Update packages.
CVEs:
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Additional Info:
N/A
Download:
SRPMS
- firefox-102.15.1-1.el9.ML.1.src.rpm
MD5: 0753a73cfcf9c772883f4d5b655e09c6
SHA-256: d2d0d5ad9ce03a0871f4d1fcd8b79d927c94b122bc7c538b102a5d305911764b
Size: 594.92 MB
Asianux Server 9 for x86_64
- firefox-102.15.1-1.el9.ML.1.x86_64.rpm
MD5: d5c5bd22ca481a03186044ab545fb293
SHA-256: cdacbf440c9d85c39b1fdd0ac65474a4b10205f2bb2a9247d52514c6e3fa340e
Size: 107.12 MB - firefox-x11-102.15.1-1.el9.ML.1.x86_64.rpm
MD5: de0dd225d5e9fb5a4297496fde11e970
SHA-256: 4bcdf1caf0c81dfa47854443b70e99bb2d901ad717f92e97d0dd387e291d40ce
Size: 14.48 kB
日本語