{"id":"MGASA-2022-0251","summary":"Updated firefox packages fix security vulnerability","details":"If an object prototype was corrupted by an attacker, they would have been able\nto set undesired attributes on a JavaScript object, leading to privileged code\nexecution (CVE-2022-2200).\n\nAn attacker could have injected CSS into stylesheets accessible via internal\nURIs, such as resource:, and in doing so bypass a page's Content Security\nPolicy (CVE-2022-31744).\n\nContent Security Policy sandbox header without `allow-scripts` can be bypassed\nvia retargeted javascript: URI. An iframe that was not permitted to run\nscripts could do so if the user clicked on a javascript: link\n(CVE-2022-34468).\n\nNavigations between XML documents may have led to a use-after-free in\nnsSHistory and potentially exploitable crash (CVE-2022-34470).\n\nIf there was a PAC URL set and the server that hosts the PAC was not\nreachable, OCSP requests would have been blocked, resulting in incorrect error\npages being shown (CVE-2022-34472).\n\nA malicious website that could create a popup could have resized the popup to\noverlay the address bar with its own content, resulting in potential user\nconfusion or spoofing attacks (CVE-2022-34479).\n\nIn the nsTArray_Impl::ReplaceElementsAt() function, an integer overflow could\nhave occurred when the number of elements to replace was too large for the\ncontainer (CVE-2022-34481).\n\nThe Mozilla Fuzzing Team reported potential vulnerabilities present in Firefox\nESR 91.10. Some of these bugs showed evidence of memory corruption and we\npresume that with enough effort \n","modified":"2026-04-16T04:41:47.402331794Z","published":"2022-07-05T19:11:26Z","upstream":["CVE-2022-2200","CVE-2022-31744","CVE-2022-34468","CVE-2022-34470","CVE-2022-34472","CVE-2022-34479","CVE-2022-34481","CVE-2022-34484"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0251.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30583"},{"type":"WEB","url":"https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/EvvZnF-wh14"},{"type":"WEB","url":"https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_80.html"},{"type":"ADVISORY","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2022-25/"}],"affected":[{"package":{"name":"firefox","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/firefox?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"91.11.0-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0251.json"}},{"package":{"name":"firefox-l10n","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/firefox-l10n?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"91.11.0-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0251.json"}},{"package":{"name":"rootcerts","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/rootcerts?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"20220610.00-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0251.json"}},{"package":{"name":"nss","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/nss?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.80.0-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0251.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}