{"affected":[{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP3","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP3","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP4","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP4","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-ESPOS","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-ESPOS","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-BCL","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-BCL","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-LTSS","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-LTSS","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP2","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP2","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Proxy 4.1","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Manager%20Proxy%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Proxy 4.1","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Manager%20Proxy%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Retail Branch Server 4.1","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Retail Branch Server 4.1","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Server 4.1","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Manager%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Manager Server 4.1","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Manager%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7","name":"MozillaFirefox","purl":"pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Enterprise%20Storage%207"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Enterprise%20Storage%207"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-branding-upstream":"102.3.0-150200.152.61.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"MozillaFirefox","purl":"pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-branding-upstream":"102.3.0-150200.152.61.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/opensuse/MozillaFirefox-branding-SLE&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-branding-upstream":"102.3.0-150200.152.61.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"MozillaFirefox","purl":"pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102.3.0-150200.152.61.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaFirefox":"102.3.0-150200.152.61.1","MozillaFirefox-branding-SLE":"102-150200.9.10.1","MozillaFirefox-branding-upstream":"102.3.0-150200.152.61.1","MozillaFirefox-devel":"102.3.0-150200.152.61.1","MozillaFirefox-translations-common":"102.3.0-150200.152.61.1","MozillaFirefox-translations-other":"102.3.0-150200.152.61.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"MozillaFirefox-branding-SLE","purl":"pkg:rpm/opensuse/MozillaFirefox-branding-SLE&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"102-150200.9.10.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for MozillaFirefox fixes the following issues:\n\nMozilla Firefox was updated to 102.3.0esr ESR (bsc#1200793, bsc#1201758, bsc#1202645, bsc#1203477):\n\n- CVE-2022-40959: Fixed bypassing FeaturePolicy restrictions on transient pages.\n- CVE-2022-40960: Fixed data-race when parsing non-UTF-8 URLs in threads.   \n- CVE-2022-40958: Fixed bypassing secure context restriction for cookies with __Host and __Secure prefix.                                                           \n- CVE-2022-40956: Fixed content-security-policy base-uri bypass.                                                                           \n- CVE-2022-40957: Fixed incoherent instruction cache when building WASM on ARM64.\n- CVE-2022-40962: Fixed memory safety bugs.\n- CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error handling.\n- CVE-2022-38473: Fixed an issue where cross-origin XSLT documents could inherit the parent's permissions.\n- CVE-2022-38478: Fixed various memory safety issues.\n- CVE-2022-38476: Fixed data race and potential use-after-free in PK11_ChangePW.\n- CVE-2022-38477: Fixed memory safety bugs.\n- CVE-2022-36319: Fixed mouse position spoofing with CSS transforms.\n- CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters.\n- CVE-2022-36314: Fixed unexpected network loads when opening local .lnk files.\n- CVE-2022-2505: Fixed memory safety bugs.\n- CVE-2022-34479: Fixed vulnerabilty where a popup window could be resized in a way to overlay the address bar with web content.\n- CVE-2022-34470: Fixed use-after-free in nsSHistory.\n- CVE-2022-34468: Fixed bypass of CSP sandbox header without `allow-scripts` via retargeted javascript: URI.\n- CVE-2022-34482: Fixed drag and drop of malicious image that could have led to malicious executable and potential code execution.\n- CVE-2022-34483: Fixed drag and drop of malicious image that could have led to malicious executable and potential code execution.\n- CVE-2022-34476: Fixed vulnerability where ASN.1 parser could have been tricked into accepting malformed ASN.1.\n- CVE-2022-34481: Fixed potential integer overflow in ReplaceElementsAt\n- CVE-2022-34474: Fixed vulnerability where sandboxed iframes could redirect to external schemes.\n- CVE-2022-34469: Fixed TLS certificate errors on HSTS-protected domains which could be bypassed by the user on Firefox for Android.\n- CVE-2022-34471: Fixed vulnerability where a compromised server could trick a browser into an addon downgrade.\n- CVE-2022-34472: Fixed vulnerability where an unavailable PAC file resulted in OCSP requests being blocked.\n- CVE-2022-34478: Fixed vulnerability where Microsoft protocols can be attacked if a user accepts a prompt.\n- CVE-2022-2200: Fixed vulnerability where undesired attributes could be set as part of prototype pollution.\n- CVE-2022-34480: Fixed free of uninitialized pointer in lg_init.\n- CVE-2022-34477: Fixed vulnerability in MediaError message property leaking information on cross-origin same-site pages.\n- CVE-2022-34475: Fixed vulnerability where the HTML Sanitizer could have been bypassed via same-origin script via use tags.\n- CVE-2022-34473: Fixed vulnerability where the HTML Sanitizer could have been bypassed via use tags.\n- CVE-2022-34484: Fixed memory safety bugs.\n- CVE-2022-34485: Fixed memory safety bugs.\n","id":"SUSE-SU-2022:3396-1","modified":"2022-09-26T14:37:52Z","published":"2022-09-26T14:37:52Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223396-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200793"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201758"},{"type":"REPORT","url":"https://bugzilla.suse.com/1202645"},{"type":"REPORT","url":"https://bugzilla.suse.com/1203477"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-2200"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-2505"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34468"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34469"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34470"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34471"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34472"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34473"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34474"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34475"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34476"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34477"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34478"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34479"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34480"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34481"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34482"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34483"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34484"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34485"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-36314"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-36318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-36319"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-38472"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-38473"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-38476"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-38477"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-38478"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40956"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40957"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40958"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40959"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40960"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-40962"}],"related":["CVE-2022-2200","CVE-2022-2505","CVE-2022-34468","CVE-2022-34469","CVE-2022-34470","CVE-2022-34471","CVE-2022-34472","CVE-2022-34473","CVE-2022-34474","CVE-2022-34475","CVE-2022-34476","CVE-2022-34477","CVE-2022-34478","CVE-2022-34479","CVE-2022-34480","CVE-2022-34481","CVE-2022-34482","CVE-2022-34483","CVE-2022-34484","CVE-2022-34485","CVE-2022-36314","CVE-2022-36318","CVE-2022-36319","CVE-2022-38472","CVE-2022-38473","CVE-2022-38476","CVE-2022-38477","CVE-2022-38478","CVE-2022-40956","CVE-2022-40957","CVE-2022-40958","CVE-2022-40959","CVE-2022-40960","CVE-2022-40962"],"summary":"Security update for MozillaFirefox","upstream":["CVE-2022-2200","CVE-2022-2505","CVE-2022-34468","CVE-2022-34469","CVE-2022-34470","CVE-2022-34471","CVE-2022-34472","CVE-2022-34473","CVE-2022-34474","CVE-2022-34475","CVE-2022-34476","CVE-2022-34477","CVE-2022-34478","CVE-2022-34479","CVE-2022-34480","CVE-2022-34481","CVE-2022-34482","CVE-2022-34483","CVE-2022-34484","CVE-2022-34485","CVE-2022-36314","CVE-2022-36318","CVE-2022-36319","CVE-2022-38472","CVE-2022-38473","CVE-2022-38476","CVE-2022-38477","CVE-2022-38478","CVE-2022-40956","CVE-2022-40957","CVE-2022-40958","CVE-2022-40959","CVE-2022-40960","CVE-2022-40962"]}