Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2022-0013)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.1.10.2022.0013

Kategorie: Mageia Linux Local Security Checks

Titel: Mageia: Security Advisory (MGASA-2022-0013)

Zusammenfassung: The remote host is missing an update for the 'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) announced via the MGASA-2022-0013 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) announced via the MGASA-2022-0013 advisory.

Vulnerability Insight:
It was possible to construct specific XSLT markup that would be able to
bypass an iframe sandbox (CVE-2021-4140).

Constructing audio sinks could have lead to a race condition when playing
audio files and closing windows. This could have lead to a use-after-free
causing a potentially exploitable crash (CVE-2022-22737).

Applying a CSS filter effect could have accessed out of bounds memory. This
could have lead to a heap-buffer-overflow in blendGaussianBlur causing a
potentially exploitable crash (CVE-2022-22738).

Malicious websites could have tricked users into accepting launching a
program to handle an external URL protocol due to missing throttling on
external protocol launch dialog (CVE-2022-22739).

Certain network request objects were freed too early when releasing a network
request handle. This could have lead to a use-after-free of
ChannelEventQueue::mOwner causing a potentially exploitable crash
(CVE-2022-22740).

When resizing a popup while requesting fullscreen access, the popup would
have become unable to leave fullscreen mode (CVE-2022-22741).

When inserting text while in edit mode, some characters might have lead to
out-of-bounds memory access causing a potentially exploitable crash
(CVE-2022-22742).

When navigating from inside an iframe while requesting fullscreen access, an
attacker-controlled tab could have made the browser unable to leave
fullscreen mode (CVE-2022-22743).

Securitypolicyviolation events could have leaked cross-origin information for
frame-ancestors violations (CVE-2022-22745).

After accepting an untrusted certificate, handling an empty pkcs7 sequence as
part of the certificate data could have lead to a crash. This crash is
believed to be unexploitable (CVE-2022-22747).

Malicious websites could have confused Firefox into showing the wrong origin
when asking to launch a program and handling an external URL protocol
(CVE-2022-22748).

Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason
Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink
reported memory safety bugs present in Firefox ESR 91.4. Some of these bugs
showed evidence of memory corruption and we presume that with enough effort
some of these could have been exploited to run arbitrary code
(CVE-2022-22751).

Affected Software/OS:
'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) on Mageia 8.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-4140
https://bugzilla.mozilla.org/show_bug.cgi?id=1746720
https://www.mozilla.org/security/advisories/mfsa2022-01/
https://www.mozilla.org/security/advisories/mfsa2022-02/
https://www.mozilla.org/security/advisories/mfsa2022-03/
Common Vulnerability Exposure (CVE) ID: CVE-2022-22737
https://bugzilla.mozilla.org/show_bug.cgi?id=1745874
Common Vulnerability Exposure (CVE) ID: CVE-2022-22738
https://bugzilla.mozilla.org/show_bug.cgi?id=1742382
Common Vulnerability Exposure (CVE) ID: CVE-2022-22739
https://bugzilla.mozilla.org/show_bug.cgi?id=1744158
Common Vulnerability Exposure (CVE) ID: CVE-2022-22740
https://bugzilla.mozilla.org/show_bug.cgi?id=1742334
Common Vulnerability Exposure (CVE) ID: CVE-2022-22741
https://bugzilla.mozilla.org/show_bug.cgi?id=1740389
Common Vulnerability Exposure (CVE) ID: CVE-2022-22742
https://bugzilla.mozilla.org/show_bug.cgi?id=1739923
Common Vulnerability Exposure (CVE) ID: CVE-2022-22743
https://bugzilla.mozilla.org/show_bug.cgi?id=1739220
Common Vulnerability Exposure (CVE) ID: CVE-2022-22745
https://bugzilla.mozilla.org/show_bug.cgi?id=1735856
Common Vulnerability Exposure (CVE) ID: CVE-2022-22747
https://bugzilla.mozilla.org/show_bug.cgi?id=1735028
Common Vulnerability Exposure (CVE) ID: CVE-2022-22748
https://bugzilla.mozilla.org/show_bug.cgi?id=1705211
Common Vulnerability Exposure (CVE) ID: CVE-2022-22751
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1664149%2C1737816%2C1739366%2C1740274%2C1740797%2C1741201%2C1741869%2C1743221%2C1743515%2C1745373%2C1746011

Copyright Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2022.0013
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2022-0013)
Zusammenfassung:	The remote host is missing an update for the 'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) announced via the MGASA-2022-0013 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) announced via the MGASA-2022-0013 advisory. Vulnerability Insight: It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox (CVE-2021-4140). Constructing audio sinks could have lead to a race condition when playing audio files and closing windows. This could have lead to a use-after-free causing a potentially exploitable crash (CVE-2022-22737). Applying a CSS filter effect could have accessed out of bounds memory. This could have lead to a heap-buffer-overflow in blendGaussianBlur causing a potentially exploitable crash (CVE-2022-22738). Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol due to missing throttling on external protocol launch dialog (CVE-2022-22739). Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free of ChannelEventQueue::mOwner causing a potentially exploitable crash (CVE-2022-22740). When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode (CVE-2022-22741). When inserting text while in edit mode, some characters might have lead to out-of-bounds memory access causing a potentially exploitable crash (CVE-2022-22742). When navigating from inside an iframe while requesting fullscreen access, an attacker-controlled tab could have made the browser unable to leave fullscreen mode (CVE-2022-22743). Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations (CVE-2022-22745). After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash. This crash is believed to be unexploitable (CVE-2022-22747). Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol (CVE-2022-22748). Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox ESR 91.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code (CVE-2022-22751). Affected Software/OS: 'firefox, firefox-l10n, nspr, nss, rootcerts' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-4140 https://bugzilla.mozilla.org/show_bug.cgi?id=1746720 https://www.mozilla.org/security/advisories/mfsa2022-01/ https://www.mozilla.org/security/advisories/mfsa2022-02/ https://www.mozilla.org/security/advisories/mfsa2022-03/ Common Vulnerability Exposure (CVE) ID: CVE-2022-22737 https://bugzilla.mozilla.org/show_bug.cgi?id=1745874 Common Vulnerability Exposure (CVE) ID: CVE-2022-22738 https://bugzilla.mozilla.org/show_bug.cgi?id=1742382 Common Vulnerability Exposure (CVE) ID: CVE-2022-22739 https://bugzilla.mozilla.org/show_bug.cgi?id=1744158 Common Vulnerability Exposure (CVE) ID: CVE-2022-22740 https://bugzilla.mozilla.org/show_bug.cgi?id=1742334 Common Vulnerability Exposure (CVE) ID: CVE-2022-22741 https://bugzilla.mozilla.org/show_bug.cgi?id=1740389 Common Vulnerability Exposure (CVE) ID: CVE-2022-22742 https://bugzilla.mozilla.org/show_bug.cgi?id=1739923 Common Vulnerability Exposure (CVE) ID: CVE-2022-22743 https://bugzilla.mozilla.org/show_bug.cgi?id=1739220 Common Vulnerability Exposure (CVE) ID: CVE-2022-22745 https://bugzilla.mozilla.org/show_bug.cgi?id=1735856 Common Vulnerability Exposure (CVE) ID: CVE-2022-22747 https://bugzilla.mozilla.org/show_bug.cgi?id=1735028 Common Vulnerability Exposure (CVE) ID: CVE-2022-22748 https://bugzilla.mozilla.org/show_bug.cgi?id=1705211 Common Vulnerability Exposure (CVE) ID: CVE-2022-22751 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1664149%2C1737816%2C1739366%2C1740274%2C1740797%2C1741201%2C1741869%2C1743221%2C1743515%2C1745373%2C1746011
Copyright	Copyright (C) 2022 Greenbone AG