Request 1160726: Submit MozillaFirefox - openSUSE Build Service

Overview

Request 1160726 accepted

- Mozilla Firefox 124.0.1
https://www.mozilla.org/en-US/firefox/124.0.1/releasenotes/
MFSA 2024-15 (bsc#1221850)
* CVE-2024-29943 (bmo#1886849)
Out-of-bounds access via Range Analysis bypass
* CVE-2024-29944 (bmo#1886852)
Privileged JavaScript Execution via Event Handlers
Mozilla Firefox 124.0
https://www.mozilla.org/en-US/firefox/124.0/releasenotes/
MFSA 2024-12 (bsc#1221327)
* CVE-2024-2605 (bmo#1872920)
Windows Error Reporter could be used as a Sandbox escape vector
* CVE-2024-2606 (bmo#1879237)
Mishandling of WASM register values
* CVE-2024-2607 (bmo#1879939)
JIT code failed to save return registers on Armv7-A
* CVE-2024-2608 (bmo#1880692)
Integer overflow could have led to out of bounds write
* CVE-2023-5388 (bmo#1780432)
NSS susceptible to timing attack against RSA decryption
* CVE-2024-2609 (bmo#1866100)
Permission prompt input delay could expire when not in focus
* CVE-2024-2610 (bmo#1871112)
Improper handling of html and body tags enabled CSP nonce leakage
* CVE-2024-2611 (bmo#1876675)
Clickjacking vulnerability could have led to a user accidentally
granting permissions
* CVE-2024-2612 (bmo#1879444)
Self referencing object could have potentially led to a use-
after-free

Created by wrosenauer 8 months ago
In state accepted

Submit MozillaFirefox

Comments for request 1160726 0

Login required, please login in order to comment

Request History

wrosenauer created request 8 months ago

- Mozilla Firefox 124.0.1
https://www.mozilla.org/en-US/firefox/124.0.1/releasenotes/
MFSA 2024-15 (bsc#1221850)
* CVE-2024-29943 (bmo#1886849)
Out-of-bounds access via Range Analysis bypass
* CVE-2024-29944 (bmo#1886852)
Privileged JavaScript Execution via Event Handlers
Mozilla Firefox 124.0
https://www.mozilla.org/en-US/firefox/124.0/releasenotes/
MFSA 2024-12 (bsc#1221327)
* CVE-2024-2605 (bmo#1872920)
Windows Error Reporter could be used as a Sandbox escape vector
* CVE-2024-2606 (bmo#1879237)
Mishandling of WASM register values
* CVE-2024-2607 (bmo#1879939)
JIT code failed to save return registers on Armv7-A
* CVE-2024-2608 (bmo#1880692)
Integer overflow could have led to out of bounds write
* CVE-2023-5388 (bmo#1780432)
NSS susceptible to timing attack against RSA decryption
* CVE-2024-2609 (bmo#1866100)
Permission prompt input delay could expire when not in focus
* CVE-2024-2610 (bmo#1871112)
Improper handling of html and body tags enabled CSP nonce leakage
* CVE-2024-2611 (bmo#1876675)
Clickjacking vulnerability could have led to a user accidentally
granting permissions
* CVE-2024-2612 (bmo#1879444)
Self referencing object could have potentially led to a use-
after-free

factory-auto added opensuse-review-team as a reviewer 8 months ago

Please review sources

factory-auto accepted review 8 months ago

Check script succeeded

licensedigger accepted review 8 months ago

The legal review is accepted preliminary. The package may require actions later on.

darix accepted review 8 months ago

Accepted review for by_group opensuse-review-team request 1160726 from user factory-auto

dimstar_suse set openSUSE:Factory:Staging:D as a staging project 8 months ago

Being evaluated by staging project "openSUSE:Factory:Staging:D"

dimstar_suse accepted review 8 months ago

Picked "openSUSE:Factory:Staging:D"

anag+factory accepted review 8 months ago

Staging Project openSUSE:Factory:Staging:D got accepted.

anag+factory approved review 8 months ago

Staging Project openSUSE:Factory:Staging:D got accepted.

anag+factory accepted request 8 months ago

Staging Project openSUSE:Factory:Staging:D got accepted.

openSUSE Build Service is sponsored by