Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE Linux 12-SP5 Security Advisory: MozillaFirefox Memory Issue Fix

suse
Calendar Grey May 9, 2022
Dist Suse Esm H88
SUSE Security Advisory details critical MozillaFirefox fixes with essential patching instructions for users and admins.
An update that fixes 14 vulnerabilities is now available

Summary

This update for MozillaFirefox fixes the following issues: This update contains the Firefox Extended Support Release 91.1.0 ESR. * Fixed: Various stability, functionality, and security fixes MFSA 2021-40 (bsc#1190269, bsc#1190274): * CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495: Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1 Firefox 91.0.1esr ESR * Fixed: Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bug 1704404) * Fixed: Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to- tab results in the address bar panel (bug 1720369) * Fixed: Various stability fixes * Fixed: Security fix MFSA 2021-37 (bsc#1189547)

Topics%20covered

Topics Covered

security advisory software update important memory issue SUSE Linux threat fix MozillaFirefox

References

#1188891 #1189547 #1190269 #1190274

Cross- CVE-2021-29980 CVE-2021-29981 CVE-2021-29982

CVE-2021-29983 CVE-2021-29984 CVE-2021-29985

CVE-2021-29986 CVE-2021-29987 CVE-2021-29988

CVE-2021-29989 CVE-2021-29990 CVE-2021-29991

CVE-2021-38492 CVE-2021-38495

CVSS scores:

CVE-2021-29980 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVE-2021-29980 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CVE-2021-29981 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVE-2021-29982 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CVE-2021-29984 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVE-2021-29984 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:1582-1
Rating: important

Topics%20covered

Topics Covered

security advisory software update important memory issue SUSE Linux threat fix MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here