Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Mageia 8 MGASA-2022-0427 Moderate: Firefox Memory Issues and Threats

mageia
Calendar Grey November 17, 2022
Dist Mageia Esm H88
Recent updates to Firefox packages for Mageia address significant vulnerabilities that impact service workers and the overall safety of memory management.
In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations (CVE-2022-43680)

Summary

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations (CVE-2022-43680).
Service Workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media combined with Range requests might have allowed them to determine the presence or length of a media file (CVE-2022-45403).
Through a series of popup and window.print() calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks (CVE-2022-45404).
Freeing arbitrary nsIInputStream's on a different thread than creation could have led to a use-after-free and potentially exploitable crash (CVE-2022-45405).
If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape. This could lead...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=31128

- https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/fHvKAhUTnLs

- https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_85.html

- https://www.mozilla.org/en-US/security/advisories/mfsa2022-48/

- https://www.cve.org/CVERecord?id=CVE-2022-43680

- https://www.cve.org/CVERecord?id=CVE-2022-45403

- https://www.cve.org/CVERecord?id=CVE-2022-45404

- https://www.cve.org/CVERecord?id=CVE-2022-45405

- https://www.cve.org/CVERecord?id=CVE-2022-45406

- https://www.cve.org/CVERecord?id=CVE-2022-45408

- https://www.cve.org/CVERecord?id=CVE-2022-45409

- https://www.cve.org/CVERecord?id=CVE-2022-45410

- https://www.cve.org/CVERecord?id=CVE-2022-45411

- https://www.cve.org/CVERecord?id=CVE-2022-45412

- https://www.cve.org/CVERecord?id=CVE-2022-45416

- https://www.cve.org/CVERecord?id=CVE-2022-45418

- https://www.cve.org/CVERecord?id=CVE-2022-45420

- https://www.cve.org/CVERecord?id=CVE-2022-45421

Topics%20covered

Topics Covered

security advisory moderate Firefox memory safety use-after-free cross-origin issues Mageia

Resolution

SRPMS

- 8/core/firefox-102.5.0-1.mga8

- 8/core/firefox-l10n-102.5.0-1.mga8

- 8/core/nss-3.85.0-1.mga8

Publication date: 17 Nov 2022
URL: https://advisories.mageia.org/MGASA-2022-0427.html
Type: security
CVE: CVE-2022-43680, CVE-2022-45403, CVE-2022-45404, CVE-2022-45405, CVE-2022-45406, CVE-2022-45408, CVE-2022-45409, CVE-2022-45410, CVE-2022-45411, CVE-2022-45412, CVE-2022-45416, CVE-2022-45418, CVE-2022-45420, CVE-2022-45421

Topics%20covered

Topics Covered

security advisory moderate Firefox memory safety use-after-free cross-origin issues Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here