Mozilla sent Firefox Version 111.0 to the release channel today. The update includes nineteen security updates of which seven (7) are rated high and six (6) rated moderate.
Firefox ESR was updated to Version 102.9.
High
#CVE-2023-28159: Fullscreen Notification could have been
hidden by download popups on Android
#CVE-2023-25748: Fullscreen
Notification could have been hidden by window prompts on Android
#CVE-2023-25749: Firefox for
Android may have opened third-party apps without a prompt
#CVE-2023-25750: Potential
ServiceWorker cache leak during private browsing mode
#CVE-2023-25751: Incorrect code
generation during JIT compilation
#CVE-2023-28176: Memory safety
bugs fixed in Firefox 111 and Firefox ESR 102.9
#CVE-2023-28177: Memory safety
bugs fixed in Firefox 111
Moderate
#CVE-2023-28160:
Redirect to Web Extension files may have leaked local path
#CVE-2023-28162:
Invalid downcast in Worklets
#CVE-2023-25752:
Potential out-of-bounds when accessing throttled streams
#CVE-2023-28163: Windows Save As dialog resolved environment variables
No comments:
Post a Comment
Neither spam nor comments containing vulgarities will be approved.