Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-42927 (GCVE-0-2022-42927)
Vulnerability from cvelistv5 – Published: 2022-12-22 00:00 – Updated: 2025-04-15 15:46
VLAI
EPSS
Summary
A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4.
Severity
8.1 (High)
CWE
- Same-origin policy violation could have leaked cross-origin URLs
Assigner
References
Impacted products
3 products
| Vendor | Product | Version | |
|---|---|---|---|
| Mozilla | Firefox |
Affected:
unspecified , < 106
(custom)
|
|
| Mozilla | Firefox ESR |
Affected:
unspecified , < 102.4
(custom)
|
|
| Mozilla | Thunderbird |
Affected:
unspecified , < 102.4
(custom)
|
Credits
James Lee
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T13:19:05.529Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1789128"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2022-44/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2022-45/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2022-46/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-42927",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-15T15:45:37.003947Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-346",
"description": "CWE-346 Origin Validation Error",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-15T15:46:11.306Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1789128"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "106",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "102.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "102.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "James Lee"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via \u003ccode\u003eperformance.getEntries()\u003c/code\u003e. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4."
}
],
"value": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Same-origin policy violation could have leaked cross-origin URLs",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-09-13T10:36:17.164Z",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1789128"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2022-44/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2022-45/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2022-46/"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2022-42927",
"datePublished": "2022-12-22T00:00:00.000Z",
"dateReserved": "2022-10-14T00:00:00.000Z",
"dateUpdated": "2025-04-15T15:46:11.306Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-42927",
"date": "2026-05-29",
"epss": "0.00151",
"percentile": "0.35449"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-42927\",\"sourceIdentifier\":\"security@mozilla.org\",\"published\":\"2022-12-22T20:15:40.127\",\"lastModified\":\"2025-04-15T16:15:19.590\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.\"},{\"lang\":\"es\",\"value\":\"Una infracci\u00f3n de la pol\u00edtica del mismo origen podr\u00eda haber permitido el robo de entradas de URL de origen cruzado, filtrando el resultado de una redirecci\u00f3n, a trav\u00e9s de \u0027performance.getEntries()\u0027. Esta vulnerabilidad afecta a Firefox \u0026lt; 106, Firefox ESR \u0026lt; 102.4 y Thunderbird \u0026lt; 102.4.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":5.2},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":5.2}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-346\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-346\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"106.0\",\"matchCriteriaId\":\"181587B4-3F8B-4B6F-8791-0323506EC07F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"102.4\",\"matchCriteriaId\":\"580471D3-4C6C-4B73-A8DF-1823E1B2C683\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"102.4\",\"matchCriteriaId\":\"A311D0A5-0DA7-4C09-8C3D-3CBBF0273284\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\",\"source\":\"security@mozilla.org\",\"tags\":[\"Issue Tracking\",\"Permissions Required\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-44/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-45/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-46/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Permissions Required\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-44/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-45/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2022-46/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Issue Tracking\",\"Permissions Required\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-44/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-45/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-46/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T13:19:05.529Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-42927\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-15T15:45:37.003947Z\"}}}], \"references\": [{\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\", \"tags\": [\"exploit\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-346\", \"description\": \"CWE-346 Origin Validation Error\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-15T15:46:05.639Z\"}}], \"cna\": {\"credits\": [{\"lang\": \"en\", \"value\": \"James Lee\"}], \"affected\": [{\"vendor\": \"Mozilla\", \"product\": \"Firefox\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"106\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Mozilla\", \"product\": \"Firefox ESR\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"102.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Mozilla\", \"product\": \"Thunderbird\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"102.4\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1789128\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-44/\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-45/\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2022-46/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via \u003ccode\u003eperformance.getEntries()\u003c/code\u003e. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Same-origin policy violation could have leaked cross-origin URLs\"}]}], \"providerMetadata\": {\"orgId\": \"f16b083a-5664-49f3-a51e-8d479e5ed7fe\", \"shortName\": \"mozilla\", \"dateUpdated\": \"2023-09-13T10:36:17.164Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-42927\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-15T15:46:11.306Z\", \"dateReserved\": \"2022-10-14T00:00:00.000Z\", \"assignerOrgId\": \"f16b083a-5664-49f3-a51e-8d479e5ed7fe\", \"datePublished\": \"2022-12-22T00:00:00.000Z\", \"assignerShortName\": \"mozilla\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
RHSA-2022:7178
Vulnerability from csaf_redhat - Published: 2022-10-25 14:03 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7178",
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7178.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:15+00:00",
"generator": {
"date": "2025-11-21T18:34:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7178",
"initial_release_date": "2022-10-25T14:03:36+00:00",
"revision_history": [
{
"date": "2022-10-25T14:03:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T14:03:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el9_0.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el9_0.src",
"product_id": "thunderbird-0:102.4.0-1.el9_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el9_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el9_0.aarch64",
"product": {
"name": "thunderbird-0:102.4.0-1.el9_0.aarch64",
"product_id": "thunderbird-0:102.4.0-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el9_0?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el9_0.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el9_0.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el9_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el9_0.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el9_0.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el9_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el9_0.s390x",
"product": {
"name": "thunderbird-0:102.4.0-1.el9_0.s390x",
"product_id": "thunderbird-0:102.4.0-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el9_0?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64"
},
"product_reference": "thunderbird-0:102.4.0-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x"
},
"product_reference": "thunderbird-0:102.4.0-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el9_0.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:03:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7178"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.src",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el9_0.x86_64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.aarch64",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.s390x",
"AppStream-9.0.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
RHSA-2022:7181
Vulnerability from csaf_redhat - Published: 2022-10-25 14:40 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7181",
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7181.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:15+00:00",
"generator": {
"date": "2025-11-21T18:34:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7181",
"initial_release_date": "2022-10-25T14:40:09+00:00",
"revision_history": [
{
"date": "2022-10-25T14:40:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T14:40:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_4.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_4.src",
"product_id": "thunderbird-0:102.4.0-1.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_4.aarch64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_4.aarch64",
"product_id": "thunderbird-0:102.4.0-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_4?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_4.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_4.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_4.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_4.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_4.s390x",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_4.s390x",
"product_id": "thunderbird-0:102.4.0-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_4.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_4.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_4.s390x",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_4.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:40:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7181"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.src",
"AppStream-8.4.0.Z.EUS:thunderbird-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.aarch64",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.ppc64le",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.s390x",
"AppStream-8.4.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
RHSA-2022:7182
Vulnerability from csaf_redhat - Published: 2022-10-25 14:37 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7182",
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7182.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:15+00:00",
"generator": {
"date": "2025-11-21T18:34:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7182",
"initial_release_date": "2022-10-25T14:37:14+00:00",
"revision_history": [
{
"date": "2022-10-25T14:37:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T14:37:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_2.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_2.src",
"product_id": "thunderbird-0:102.4.0-1.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_2.aarch64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_2.aarch64",
"product_id": "thunderbird-0:102.4.0-1.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_2.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_2.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_2.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_2.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_2.src",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:37:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7182"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.src",
"AppStream-8.2.0.Z.EUS:thunderbird-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:thunderbird-debugsource-0:102.4.0-1.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
RHSA-2022:7183
Vulnerability from csaf_redhat - Published: 2022-10-25 14:38 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7183",
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7183.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:20+00:00",
"generator": {
"date": "2025-11-21T18:34:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7183",
"initial_release_date": "2022-10-25T14:38:17+00:00",
"revision_history": [
{
"date": "2022-10-25T14:38:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T14:38:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.1::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_1.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_1.src",
"product_id": "thunderbird-0:102.4.0-1.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_1.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_1.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_1.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_1.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_1.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_1.src",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)",
"product_id": "AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:38:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7183"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.src",
"AppStream-8.1.0.Z.E4S:thunderbird-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debuginfo-0:102.4.0-1.el8_1.x86_64",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.ppc64le",
"AppStream-8.1.0.Z.E4S:thunderbird-debugsource-0:102.4.0-1.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
RHSA-2022:7184
Vulnerability from csaf_redhat - Published: 2022-10-25 14:53 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7184",
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7184.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:16+00:00",
"generator": {
"date": "2025-11-21T18:34:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7184",
"initial_release_date": "2022-10-25T14:53:15+00:00",
"revision_history": [
{
"date": "2022-10-25T14:53:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T14:53:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el7_9.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el7_9.src",
"product_id": "thunderbird-0:102.4.0-1.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el7_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el7_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el7_9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.src",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.src",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.src",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T14:53:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7184"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Client-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Client-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Server-optional-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Server-optional-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.src",
"7Workstation-7.9.Z:thunderbird-0:102.4.0-1.el7_9.x86_64",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.ppc64le",
"7Workstation-7.9.Z:thunderbird-debuginfo-0:102.4.0-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
RHSA-2022:7190
Vulnerability from csaf_redhat - Published: 2022-10-25 15:27 - Updated: 2025-11-21 18:34Summary
Red Hat Security Advisory: thunderbird security update
Severity
Important
Notes
Topic: An update for thunderbird is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.4.0.
Security Fix(es):
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)
* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)
* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)
* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)
* Mozilla: Denial of Service via window.print (CVE-2022-42929)
* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.
4.3 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user's account under specific conditions in order to exfiltrate message keys.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.1 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
8.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
55 references
Acknowledgments
the Mozilla project
Security of Advanced Systems Group University of Sheffield
Benjamin Dowling
Brave Software
Sofía Celi
Information Security Group at Royal Holloway University London
Martin R. Albrecht and Dan Jones
James Lee
Samuel Groß
Andrei Enache
Mozilla developers and community
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for thunderbird is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nThis update upgrades Thunderbird to version 102.4.0.\n\nSecurity Fix(es):\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators (CVE-2022-39249)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack (CVE-2022-39250)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack (CVE-2022-39251)\n\n* Mozilla: Same-origin policy violation could have leaked cross-origin URLs (CVE-2022-42927)\n\n* Mozilla: Memory Corruption in JS Engine (CVE-2022-42928)\n\n* Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue (CVE-2022-39236)\n\n* Mozilla: Denial of Service via window.print (CVE-2022-42929)\n\n* Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4 (CVE-2022-42932)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7190",
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7190.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T18:34:17+00:00",
"generator": {
"date": "2025-11-21T18:34:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:7190",
"initial_release_date": "2022-10-25T15:27:27+00:00",
"revision_history": [
{
"date": "2022-10-25T15:27:27+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-10-25T15:27:27+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:34:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_6.src",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_6.src",
"product_id": "thunderbird-0:102.4.0-1.el8_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_6.aarch64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_6.aarch64",
"product_id": "thunderbird-0:102.4.0-1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_6.ppc64le",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_6.ppc64le",
"product_id": "thunderbird-0:102.4.0-1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_6.x86_64",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_6.x86_64",
"product_id": "thunderbird-0:102.4.0-1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:102.4.0-1.el8_6.s390x",
"product": {
"name": "thunderbird-0:102.4.0-1.el8_6.s390x",
"product_id": "thunderbird-0:102.4.0-1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@102.4.0-1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"product": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"product_id": "thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debugsource@102.4.0-1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"product": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"product_id": "thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@102.4.0-1.el8_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_6.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:102.4.0-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64"
},
"product_reference": "thunderbird-0:102.4.0-1.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
},
"product_reference": "thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
}
],
"cve": "CVE-2022-39236",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135391"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to a data corruption issue. An attacker could potentially cause data integrity issues by sending specially crafted messages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39236"
},
{
"category": "external",
"summary": "RHBZ#2135391",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135391"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39236"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39236"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39236"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39249",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39249"
},
{
"category": "external",
"summary": "RHBZ#2135393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39249"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39249"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39250",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-10-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135395"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. A malicious server administrator could interfere with cross-device verification to authenticate their own device.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39250"
},
{
"category": "external",
"summary": "RHBZ#2135395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39250"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39250"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39250"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Martin R. Albrecht and Dan Jones"
],
"organization": "Information Security Group at Royal Holloway University London",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Benjamin Dowling"
],
"organization": "Security of Advanced Systems Group University of Sheffield",
"summary": "Acknowledged by upstream."
},
{
"names": [
"Sof\u00eda Celi"
],
"organization": "Brave Software",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-39251",
"cwe": {
"id": "CWE-322",
"name": "Key Exchange without Entity Authentication"
},
"discovery_date": "2022-09-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2135396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. According to the Mozilla Foundation Security Advisory, Thunderbird users who use the Matrix chat protocol are vulnerable to an impersonation attack. An attacker could spoof historical messages from other users, and use a malicious key backup to the user\u0027s account under specific conditions in order to exfiltrate message keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39251"
},
{
"category": "external",
"summary": "RHBZ#2135396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39251"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39251"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/#CVE-2022-39251"
}
],
"release_date": "2022-09-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"James Lee"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42927",
"cwe": {
"id": "CWE-829",
"name": "Inclusion of Functionality from Untrusted Control Sphere"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136156"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via `performance.getEntries()`.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "RHBZ#2136156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136156"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42927"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42927"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Same-origin policy violation could have leaked cross-origin URLs"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Samuel Gro\u00df"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42928",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136157"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of certain types of allocations that were missing annotations that, if the Garbage Collector was in a specific state, could lead to memory corruption and a potentially exploitable crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory Corruption in JS Engine",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "RHBZ#2136157",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136157"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42928"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42928"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Mozilla: Memory Corruption in JS Engine"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Andrei Enache"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42929",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136158"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called `window.print()` causing a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Denial of Service via window.print",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "RHBZ#2136158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42929"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42929"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Denial of Service via window.print"
},
{
"acknowledgments": [
{
"names": [
"the Mozilla project"
]
},
{
"names": [
"Mozilla developers and community"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2022-42932",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2136159"
}
],
"notes": [
{
"category": "description",
"text": "The Mozilla Foundation Security Advisory describes this flaw as:\r\n\r\nMozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "RHBZ#2136159",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136159"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-42932",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-45/#CVE-2022-42932"
},
{
"category": "external",
"summary": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2022-46/#CVE-2022-42932"
}
],
"release_date": "2022-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-10-25T15:27:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Thunderbird must be restarted for the update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7190"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.src",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debuginfo-0:102.4.0-1.el8_6.x86_64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.aarch64",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.ppc64le",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.s390x",
"AppStream-8.6.0.Z.MAIN.EUS:thunderbird-debugsource-0:102.4.0-1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4"
}
]
}
SUSE-SU-2022:3698-1
Vulnerability from csaf_suse - Published: 2022-10-24 08:37 - Updated: 2022-10-24 08:37Summary
Security update for MozillaFirefox
Severity
Important
Notes
Title of the patch: Security update for MozillaFirefox
Description of the patch: This update for MozillaFirefox fixes the following issues:
- Updated to version 102.4.0 ESR (bsc#1204421)
- CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.
- CVE-2022-42928: Fixed memory Corruption in JS Engine.
- CVE-2022-42929: Fixed denial of Service via window.print.
- CVE-2022-42932: Fixed memory safety bugs.
Patchnames: SUSE-2022-3698,SUSE-SLE-Product-HPC-15-2022-3698,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-3698,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-3698,SUSE-SLE-Product-SLES-15-2022-3698,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-3698,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-3698,SUSE-SLE-Product-SLES_SAP-15-2022-3698,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-3698,SUSE-Storage-6-2022-3698
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\n- Updated to version 102.4.0 ESR (bsc#1204421)\n- CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.\n- CVE-2022-42928: Fixed memory Corruption in JS Engine.\n- CVE-2022-42929: Fixed denial of Service via window.print.\n- CVE-2022-42932: Fixed memory safety bugs.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-3698,SUSE-SLE-Product-HPC-15-2022-3698,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-3698,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-3698,SUSE-SLE-Product-SLES-15-2022-3698,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-3698,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-3698,SUSE-SLE-Product-SLES_SAP-15-2022-3698,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-3698,SUSE-Storage-6-2022-3698",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_3698-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:3698-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20223698-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:3698-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-October/012635.html"
},
{
"category": "self",
"summary": "SUSE Bug 1204421",
"url": "https://bugzilla.suse.com/1204421"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42927 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42928 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42929 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42932 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42932/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2022-10-24T08:37:30Z",
"generator": {
"date": "2022-10-24T08:37:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:3698-1",
"initial_release_date": "2022-10-24T08:37:30Z",
"revision_history": [
{
"date": "2022-10-24T08:37:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"product": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"product_id": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.aarch64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.aarch64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"product_id": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"product_id": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"product_id": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150000.150.62.1.i686",
"product": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.i686",
"product_id": "MozillaFirefox-102.4.0-150000.150.62.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.i686",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.i686",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.i686",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.i686",
"product_id": "MozillaFirefox-devel-102.4.0-150000.150.62.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.i686",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.i686",
"product_id": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.i686",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.i686",
"product_id": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.i686"
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"product": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"product_id": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.ppc64le",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.ppc64le",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"product_id": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"product_id": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"product_id": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"product": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"product_id": "MozillaFirefox-102.4.0-150000.150.62.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.s390x",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.s390x",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"product_id": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"product_id": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"product_id": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"product": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"product_id": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.x86_64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150000.150.62.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"product_id": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"product_id": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"product_id": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-42927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42927"
}
],
"notes": [
{
"category": "general",
"text": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42927",
"url": "https://www.suse.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42927",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-24T08:37:30Z",
"details": "important"
}
],
"title": "CVE-2022-42927"
},
{
"cve": "CVE-2022-42928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42928"
}
],
"notes": [
{
"category": "general",
"text": "Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42928",
"url": "https://www.suse.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42928",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-24T08:37:30Z",
"details": "important"
}
],
"title": "CVE-2022-42928"
},
{
"cve": "CVE-2022-42929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42929"
}
],
"notes": [
{
"category": "general",
"text": "If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42929",
"url": "https://www.suse.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42929",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-24T08:37:30Z",
"details": "important"
}
],
"title": "CVE-2022-42929"
},
{
"cve": "CVE-2022-42932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42932"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42932",
"url": "https://www.suse.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42932",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Enterprise Storage 6:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-devel-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-common-102.4.0-150000.150.62.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:MozillaFirefox-translations-other-102.4.0-150000.150.62.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-24T08:37:30Z",
"details": "important"
}
],
"title": "CVE-2022-42932"
}
]
}
SUSE-SU-2022:3719-1
Vulnerability from csaf_suse - Published: 2022-10-25 08:20 - Updated: 2022-10-25 08:20Summary
Security update for MozillaFirefox
Severity
Important
Notes
Title of the patch: Security update for MozillaFirefox
Description of the patch: This update for MozillaFirefox fixes the following issues:
Updated to version 102.4.0 ESR (bsc#1204421):
- CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.
- CVE-2022-42928: Fixed memory Corruption in JS Engine.
- CVE-2022-42929: Fixed denial of Service via window.print.
- CVE-2022-42932: Fixed memory safety bugs.
Patchnames: SUSE-2022-3719,SUSE-OpenStack-Cloud-9-2022-3719,SUSE-OpenStack-Cloud-Crowbar-9-2022-3719,SUSE-SLE-SAP-12-SP4-2022-3719,SUSE-SLE-SDK-12-SP5-2022-3719,SUSE-SLE-SERVER-12-SP2-BCL-2022-3719,SUSE-SLE-SERVER-12-SP3-BCL-2022-3719,SUSE-SLE-SERVER-12-SP4-LTSS-2022-3719,SUSE-SLE-SERVER-12-SP5-2022-3719
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
58 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
58 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
58 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
58 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\n Updated to version 102.4.0 ESR (bsc#1204421):\n\n - CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.\n - CVE-2022-42928: Fixed memory Corruption in JS Engine.\n - CVE-2022-42929: Fixed denial of Service via window.print.\n - CVE-2022-42932: Fixed memory safety bugs.\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-3719,SUSE-OpenStack-Cloud-9-2022-3719,SUSE-OpenStack-Cloud-Crowbar-9-2022-3719,SUSE-SLE-SAP-12-SP4-2022-3719,SUSE-SLE-SDK-12-SP5-2022-3719,SUSE-SLE-SERVER-12-SP2-BCL-2022-3719,SUSE-SLE-SERVER-12-SP3-BCL-2022-3719,SUSE-SLE-SERVER-12-SP4-LTSS-2022-3719,SUSE-SLE-SERVER-12-SP5-2022-3719",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_3719-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:3719-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20223719-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:3719-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-October/012664.html"
},
{
"category": "self",
"summary": "SUSE Bug 1204421",
"url": "https://bugzilla.suse.com/1204421"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42927 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42928 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42929 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42932 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42932/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2022-10-25T08:20:30Z",
"generator": {
"date": "2022-10-25T08:20:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:3719-1",
"initial_release_date": "2022-10-25T08:20:30Z",
"revision_history": [
{
"date": "2022-10-25T08:20:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-112.136.3.aarch64",
"product": {
"name": "MozillaFirefox-102.4.0-112.136.3.aarch64",
"product_id": "MozillaFirefox-102.4.0-112.136.3.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.aarch64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.aarch64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"product_id": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"product_id": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.aarch64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.aarch64",
"product_id": "MozillaFirefox-translations-other-102.4.0-112.136.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"product": {
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"product_id": "MozillaFirefox-102.4.0-112.136.3.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.ppc64le",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.ppc64le",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"product": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"product_id": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"product_id": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.ppc64le",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.ppc64le",
"product_id": "MozillaFirefox-translations-other-102.4.0-112.136.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-112.136.3.s390x",
"product": {
"name": "MozillaFirefox-102.4.0-112.136.3.s390x",
"product_id": "MozillaFirefox-102.4.0-112.136.3.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.s390x",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.s390x",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"product": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"product_id": "MozillaFirefox-devel-102.4.0-112.136.3.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"product_id": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.s390x",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.s390x",
"product_id": "MozillaFirefox-translations-other-102.4.0-112.136.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"product": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"product_id": "MozillaFirefox-102.4.0-112.136.3.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.x86_64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-112.136.3.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"product_id": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"product_id": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-112.136.3.x86_64",
"product_id": "MozillaFirefox-translations-other-102.4.0-112.136.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-42927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42927"
}
],
"notes": [
{
"category": "general",
"text": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42927",
"url": "https://www.suse.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42927",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T08:20:30Z",
"details": "important"
}
],
"title": "CVE-2022-42927"
},
{
"cve": "CVE-2022-42928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42928"
}
],
"notes": [
{
"category": "general",
"text": "Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42928",
"url": "https://www.suse.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42928",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T08:20:30Z",
"details": "important"
}
],
"title": "CVE-2022-42928"
},
{
"cve": "CVE-2022-42929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42929"
}
],
"notes": [
{
"category": "general",
"text": "If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42929",
"url": "https://www.suse.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42929",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T08:20:30Z",
"details": "important"
}
],
"title": "CVE-2022-42929"
},
{
"cve": "CVE-2022-42932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42932"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42932",
"url": "https://www.suse.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42932",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-devel-102.4.0-112.136.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:MozillaFirefox-translations-common-102.4.0-112.136.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T08:20:30Z",
"details": "important"
}
],
"title": "CVE-2022-42932"
}
]
}
SUSE-SU-2022:3726-1
Vulnerability from csaf_suse - Published: 2022-10-25 12:07 - Updated: 2022-10-25 12:07Summary
Security update for MozillaFirefox
Severity
Important
Notes
Title of the patch: Security update for MozillaFirefox
Description of the patch: This update for MozillaFirefox fixes the following issues:
- Updated to version 102.4.0 ESR (bsc#1204421)
- CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.
- CVE-2022-42928: Fixed memory Corruption in JS Engine.
- CVE-2022-42929: Fixed denial of Service via window.print.
- CVE-2022-42932: Fixed memory safety bugs.
Patchnames: SUSE-2022-3726,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-3726,SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-3726,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-3726,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-3726,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-3726,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-3726,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-3726,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-3726,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-3726,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-3726,SUSE-Storage-7-2022-3726,openSUSE-SLE-15.3-2022-3726,openSUSE-SLE-15.4-2022-3726
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
142 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
142 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
142 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
142 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\n- Updated to version 102.4.0 ESR (bsc#1204421)\n- CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs.\n- CVE-2022-42928: Fixed memory Corruption in JS Engine.\n- CVE-2022-42929: Fixed denial of Service via window.print.\n- CVE-2022-42932: Fixed memory safety bugs.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-3726,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-3726,SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-3726,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-3726,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-3726,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-3726,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-3726,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-3726,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-3726,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-3726,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-3726,SUSE-Storage-7-2022-3726,openSUSE-SLE-15.3-2022-3726,openSUSE-SLE-15.4-2022-3726",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_3726-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:3726-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20223726-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:3726-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-October/012666.html"
},
{
"category": "self",
"summary": "SUSE Bug 1204421",
"url": "https://bugzilla.suse.com/1204421"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42927 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42928 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42929 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42932 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42932/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2022-10-25T12:07:21Z",
"generator": {
"date": "2022-10-25T12:07:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:3726-1",
"initial_release_date": "2022-10-25T12:07:21Z",
"revision_history": [
{
"date": "2022-10-25T12:07:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"product": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"product_id": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"product_id": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"product_id": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"product_id": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150200.152.64.1.i686",
"product": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.i686",
"product_id": "MozillaFirefox-102.4.0-150200.152.64.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.i686",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.i686",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.i686",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.i686",
"product_id": "MozillaFirefox-devel-102.4.0-150200.152.64.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.i686",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.i686",
"product_id": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.i686",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.i686",
"product_id": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.i686"
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"product": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"product_id": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"product_id": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"product_id": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"product_id": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"product": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"product_id": "MozillaFirefox-102.4.0-150200.152.64.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"product_id": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"product_id": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"product_id": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"product": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"product_id": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"product_id": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"product": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"product_id": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"product_id": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"product_id": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-desktop-applications:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-desktop-applications:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.1",
"product": {
"name": "SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.1",
"product": {
"name": "SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.1",
"product": {
"name": "SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7",
"product": {
"name": "SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-42927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42927"
}
],
"notes": [
{
"category": "general",
"text": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42927",
"url": "https://www.suse.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42927",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T12:07:21Z",
"details": "important"
}
],
"title": "CVE-2022-42927"
},
{
"cve": "CVE-2022-42928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42928"
}
],
"notes": [
{
"category": "general",
"text": "Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42928",
"url": "https://www.suse.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42928",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T12:07:21Z",
"details": "important"
}
],
"title": "CVE-2022-42928"
},
{
"cve": "CVE-2022-42929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42929"
}
],
"notes": [
{
"category": "general",
"text": "If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42929",
"url": "https://www.suse.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42929",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T12:07:21Z",
"details": "important"
}
],
"title": "CVE-2022-42929"
},
{
"cve": "CVE-2022-42932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42932"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42932",
"url": "https://www.suse.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42932",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Enterprise Storage 7:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Module for Desktop Applications 15 SP4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Proxy 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"SUSE Manager Server 4.1:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.3:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x",
"openSUSE Leap 15.4:MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-10-25T12:07:21Z",
"details": "important"
}
],
"title": "CVE-2022-42932"
}
]
}
SUSE-SU-2022:4085-1
Vulnerability from csaf_suse - Published: 2022-11-18 15:39 - Updated: 2022-11-18 15:39Summary
Security update for MozillaThunderbird
Severity
Important
Notes
Title of the patch: Security update for MozillaThunderbird
Description of the patch: This update for MozillaThunderbird fixes the following issues:
- Fixed various security issues (MFSA 2022-49, bsc#1205270):
* CVE-2022-45403 (bmo#1762078)
Service Workers might have learned size of cross-origin media
files
* CVE-2022-45404 (bmo#1790815)
Fullscreen notification bypass
* CVE-2022-45405 (bmo#1791314)
Use-after-free in InputStream implementation
* CVE-2022-45406 (bmo#1791975)
Use-after-free of a JavaScript Realm
* CVE-2022-45408 (bmo#1793829)
Fullscreen notification bypass via windowName
* CVE-2022-45409 (bmo#1796901)
Use-after-free in Garbage Collection
* CVE-2022-45410 (bmo#1658869)
ServiceWorker-intercepted requests bypassed SameSite cookie
policy
* CVE-2022-45411 (bmo#1790311)
Cross-Site Tracing was possible via non-standard override
headers
* CVE-2022-45412 (bmo#1791029)
Symlinks may resolve to partially uninitialized buffers
* CVE-2022-45416 (bmo#1793676)
Keystroke Side-Channel Leakage
* CVE-2022-45418 (bmo#1795815)
Custom mouse cursor could have been drawn over browser UI
* CVE-2022-45420 (bmo#1792643)
Iframe contents could be rendered outside the iframe
* CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
Memory safety bugs fixed in Thunderbird 102.5
- Fixed various security issues: (MFSA 2022-46, bsc#1204421):
* CVE-2022-42927 (bmo#1789128)
Same-origin policy violation could have leaked cross-origin
URLs
* CVE-2022-42928 (bmo#1791520)
Memory Corruption in JS Engine
* CVE-2022-42929 (bmo#1789439)
Denial of Service via window.print
* CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041)
Memory safety bugs fixed in Thunderbird 102.4
- Mozilla Thunderbird 102.5
* changed: `Ctrl+N` shortcut to create new contacts from
address book restored (bmo#1751288)
* fixed: Account Settings UI did not update to reflect default
identity changes (bmo#1782646)
* fixed: New POP mail notifications were incorrectly shown for
messages marked by filters as read or junk (bmo#1787531)
* fixed: Connecting to an IMAP server configured to use
`PREAUTH` caused Thunderbird to hang (bmo#1798161)
* fixed: Error responses received in greeting header from NNTP
servers did not display error message (bmo#1792281)
* fixed: News messages sent using 'Send Later' failed to send
after going back online (bmo#1794997)
* fixed: 'Download/Sync Now...' did not completely sync all
newsgroups before going offline (bmo#1795547)
* fixed: Username was missing from error dialog on failed login
to news server (bmo#1796964)
* fixed: Thunderbird can now fetch RSS channel feeds with
incomplete channel URL (bmo#1794775)
* fixed: Add-on 'Contribute' button in Add-ons Manager did not
work (bmo#1795751)
* fixed: Help text for `/part` Matrix command was incorrect
(bmo#1795578)
* fixed: Invite Attendees dialog did not fetch free/busy info
for attendees with encoded characters in their name
(bmo#1797927)
- Mozilla Thunderbird 102.4.2
* changed: 'Address Book' button in Account Central will now
create a CardDAV address book instead of a local address book
(bmo#1793903)
* fixed: Messages fetched from POP server in `Fetch headers
only` mode disappeared when moved to different folder by
filter action (bmo#1793374)
* fixed: Thunderbird re-downloaded locally deleted messages
from a POP server when 'Leave messages on server' and 'Until
I delete them' were enabled (bmo#1796903)
* fixed: Multiple password prompts for the same POP account
could be displayed (bmo#1786920)
* fixed: IMAP authentication failed on next startup if ImapMail
folder was deleted by user (bmo#1793599)
* fixed: Retrieving passwords for authenticated NNTP accounts
could fail due to obsolete preferences in a users profile on
every startup (bmo#1770594)
* fixed: `Get Next n Messages` did not consistently fetch all
messages requested from NNTP server (bmo#1794185)
* fixed: `Get Messages` button unable to fetch messages from
NNTP server if root folder not selected (bmo#1792362)
* fixed: Thunderbird text branding did not always match locale
of localized build (bmo#1786199)
* fixed: Thunderbird installer and Thunderbird updater created
Windows shortcuts with different names (bmo#1787264)
* fixed: LDAP search filters unable to work with non-ASCII
characters (bmo#1794306)
* fixed: 'Today' highlighting in Calendar Month view did not
update after date change at midnight (bmo#1795176)
- Mozilla Thunderbird 102.4.1
* new: Thunderbird will now catch and report errors parsing
vCards that contain incorrectly formatted dates (bmo#1793415)
* fixed: Dynamic language switching did not update interface
when switched to right-to-left languages (bmo#1794289)
* fixed: Custom header data was discarded after messages were
saved as draft and reopened (bmo#195716)
* fixed: `-remote` command line argument did not work,
affecting integration with various applications such as
LibreOffice (bmo#1793323)
* fixed: Messages received via some SMS-to-email services could
not display images (bmo#1774805)
* fixed: VCards with nickname field set could not be edited
(bmo#1793877)
* fixed: Some recurring events were missing from Agenda on
first load (bmo#1771168)
* fixed: Download requests for remote ICS calendars incorrectly
set 'Accept' header to text/xml (bmo#1793757)
* fixed: Monthly events created on the 31st of a month with <30
days placed first occurrence 1-2 days after the beginning of
the following month (bmo#1266797)
* fixed: Various visual and UX improvements
(bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399)
* changed: Thunderbird will automatically detect and repair
OpenPGP key storage corruption caused by using the profile
import tool in Thunderbird 102 (bmo#1790610)
* fixed: POP message download into a large folder (~13000
messages) caused Thunderbird to temporarily freeze
(bmo#1792675)
* fixed: Forwarding messages with special characters in Subject
failed on Windows (bmo#1782173)
* fixed: Links for FileLink attachments were not added when
attachment filename contained Unicode characters
(bmo#1789589)
* fixed: Address Book display pane continued to show contacts
after deletion (bmo#1777808)
* fixed: Printing address book did not include all contact
details (bmo#1782076)
* fixed: CardDAV contacts without a Name property did not save
to Google Contacts (bmo#1792101)
* fixed: 'Publish Calendar' did not work (bmo#1794471)
* fixed: Calendar database storage improvements (bmo#1792124)
* fixed: Incorrectly handled error responses from CalDAV
servers sometimes caused events to disappear from calendar
(bmo#1792923)
* fixed: Various visual and UX improvements (bmo#1776093,bmo#17
80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179
3543)
Patchnames: SUSE-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4085,SUSE-SLE-Product-WE-15-SP3-2022-4085,SUSE-SLE-Product-WE-15-SP4-2022-4085,openSUSE-SLE-15.3-2022-4085,openSUSE-SLE-15.4-2022-4085
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
9.8 (Critical)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
8.8 (High)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.1 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
8.8 (High)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.1 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
6.5 (Medium)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
8.8 (High)
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
References
58 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaThunderbird",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaThunderbird fixes the following issues:\n\n- Fixed various security issues (MFSA 2022-49, bsc#1205270):\n * CVE-2022-45403 (bmo#1762078)\n Service Workers might have learned size of cross-origin media\n files\n * CVE-2022-45404 (bmo#1790815)\n Fullscreen notification bypass\n * CVE-2022-45405 (bmo#1791314)\n Use-after-free in InputStream implementation\n * CVE-2022-45406 (bmo#1791975)\n Use-after-free of a JavaScript Realm\n * CVE-2022-45408 (bmo#1793829)\n Fullscreen notification bypass via windowName\n * CVE-2022-45409 (bmo#1796901)\n Use-after-free in Garbage Collection\n * CVE-2022-45410 (bmo#1658869)\n ServiceWorker-intercepted requests bypassed SameSite cookie\n policy\n * CVE-2022-45411 (bmo#1790311)\n Cross-Site Tracing was possible via non-standard override\n headers\n * CVE-2022-45412 (bmo#1791029)\n Symlinks may resolve to partially uninitialized buffers\n * CVE-2022-45416 (bmo#1793676)\n Keystroke Side-Channel Leakage\n * CVE-2022-45418 (bmo#1795815)\n Custom mouse cursor could have been drawn over browser UI\n * CVE-2022-45420 (bmo#1792643)\n Iframe contents could be rendered outside the iframe\n * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)\n Memory safety bugs fixed in Thunderbird 102.5\n\n- Fixed various security issues: (MFSA 2022-46, bsc#1204421):\n * CVE-2022-42927 (bmo#1789128)\n Same-origin policy violation could have leaked cross-origin\n URLs\n * CVE-2022-42928 (bmo#1791520)\n Memory Corruption in JS Engine\n * CVE-2022-42929 (bmo#1789439)\n Denial of Service via window.print\n * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041)\n Memory safety bugs fixed in Thunderbird 102.4\n\n- Mozilla Thunderbird 102.5\n * changed: `Ctrl+N` shortcut to create new contacts from\n address book restored (bmo#1751288)\n * fixed: Account Settings UI did not update to reflect default\n identity changes (bmo#1782646)\n * fixed: New POP mail notifications were incorrectly shown for\n messages marked by filters as read or junk (bmo#1787531)\n * fixed: Connecting to an IMAP server configured to use\n `PREAUTH` caused Thunderbird to hang (bmo#1798161)\n * fixed: Error responses received in greeting header from NNTP\n servers did not display error message (bmo#1792281)\n * fixed: News messages sent using \u0027Send Later\u0027 failed to send\n after going back online (bmo#1794997)\n * fixed: \u0027Download/Sync Now...\u0027 did not completely sync all\n newsgroups before going offline (bmo#1795547)\n * fixed: Username was missing from error dialog on failed login\n to news server (bmo#1796964)\n * fixed: Thunderbird can now fetch RSS channel feeds with\n incomplete channel URL (bmo#1794775)\n * fixed: Add-on \u0027Contribute\u0027 button in Add-ons Manager did not\n work (bmo#1795751)\n * fixed: Help text for `/part` Matrix command was incorrect\n (bmo#1795578)\n * fixed: Invite Attendees dialog did not fetch free/busy info\n for attendees with encoded characters in their name\n (bmo#1797927)\n\n- Mozilla Thunderbird 102.4.2\n * changed: \u0027Address Book\u0027 button in Account Central will now\n create a CardDAV address book instead of a local address book\n (bmo#1793903)\n * fixed: Messages fetched from POP server in `Fetch headers\n only` mode disappeared when moved to different folder by\n filter action (bmo#1793374)\n * fixed: Thunderbird re-downloaded locally deleted messages\n from a POP server when \u0027Leave messages on server\u0027 and \u0027Until\n I delete them\u0027 were enabled (bmo#1796903)\n * fixed: Multiple password prompts for the same POP account\n could be displayed (bmo#1786920)\n * fixed: IMAP authentication failed on next startup if ImapMail\n folder was deleted by user (bmo#1793599)\n * fixed: Retrieving passwords for authenticated NNTP accounts\n could fail due to obsolete preferences in a users profile on\n every startup (bmo#1770594)\n * fixed: `Get Next n Messages` did not consistently fetch all\n messages requested from NNTP server (bmo#1794185)\n * fixed: `Get Messages` button unable to fetch messages from\n NNTP server if root folder not selected (bmo#1792362)\n * fixed: Thunderbird text branding did not always match locale\n of localized build (bmo#1786199)\n * fixed: Thunderbird installer and Thunderbird updater created\n Windows shortcuts with different names (bmo#1787264)\n * fixed: LDAP search filters unable to work with non-ASCII\n characters (bmo#1794306)\n * fixed: \u0027Today\u0027 highlighting in Calendar Month view did not\n update after date change at midnight (bmo#1795176)\n\n- Mozilla Thunderbird 102.4.1\n * new: Thunderbird will now catch and report errors parsing\n vCards that contain incorrectly formatted dates (bmo#1793415)\n * fixed: Dynamic language switching did not update interface\n when switched to right-to-left languages (bmo#1794289)\n * fixed: Custom header data was discarded after messages were\n saved as draft and reopened (bmo#195716)\n * fixed: `-remote` command line argument did not work,\n affecting integration with various applications such as\n LibreOffice (bmo#1793323)\n * fixed: Messages received via some SMS-to-email services could\n not display images (bmo#1774805)\n * fixed: VCards with nickname field set could not be edited\n (bmo#1793877)\n * fixed: Some recurring events were missing from Agenda on\n first load (bmo#1771168)\n * fixed: Download requests for remote ICS calendars incorrectly\n set \u0027Accept\u0027 header to text/xml (bmo#1793757)\n * fixed: Monthly events created on the 31st of a month with \u003c30\n days placed first occurrence 1-2 days after the beginning of\n the following month (bmo#1266797)\n * fixed: Various visual and UX improvements\n (bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399)\n\n * changed: Thunderbird will automatically detect and repair\n OpenPGP key storage corruption caused by using the profile\n import tool in Thunderbird 102 (bmo#1790610)\n * fixed: POP message download into a large folder (~13000\n messages) caused Thunderbird to temporarily freeze\n (bmo#1792675)\n * fixed: Forwarding messages with special characters in Subject\n failed on Windows (bmo#1782173)\n * fixed: Links for FileLink attachments were not added when\n attachment filename contained Unicode characters\n (bmo#1789589)\n * fixed: Address Book display pane continued to show contacts\n after deletion (bmo#1777808)\n * fixed: Printing address book did not include all contact\n details (bmo#1782076)\n * fixed: CardDAV contacts without a Name property did not save\n to Google Contacts (bmo#1792101)\n * fixed: \u0027Publish Calendar\u0027 did not work (bmo#1794471)\n * fixed: Calendar database storage improvements (bmo#1792124)\n * fixed: Incorrectly handled error responses from CalDAV\n servers sometimes caused events to disappear from calendar\n (bmo#1792923)\n * fixed: Various visual and UX improvements (bmo#1776093,bmo#17\n 80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179\n 3543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4085,SUSE-SLE-Product-WE-15-SP3-2022-4085,SUSE-SLE-Product-WE-15-SP4-2022-4085,openSUSE-SLE-15.3-2022-4085,openSUSE-SLE-15.4-2022-4085",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_4085-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:4085-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:4085-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012993.html"
},
{
"category": "self",
"summary": "SUSE Bug 1204421",
"url": "https://bugzilla.suse.com/1204421"
},
{
"category": "self",
"summary": "SUSE Bug 1205270",
"url": "https://bugzilla.suse.com/1205270"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42927 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42928 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42929 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-42932 page",
"url": "https://www.suse.com/security/cve/CVE-2022-42932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45403 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45403/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45404 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45404/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45405 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45406 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45406/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45408 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45408/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45409 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45409/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45410 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45411 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45411/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45412 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45412/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45416 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45416/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45418 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45418/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45420 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45420/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-45421 page",
"url": "https://www.suse.com/security/cve/CVE-2022-45421/"
}
],
"title": "Security update for MozillaThunderbird",
"tracking": {
"current_release_date": "2022-11-18T15:39:11Z",
"generator": {
"date": "2022-11-18T15:39:11Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:4085-1",
"initial_release_date": "2022-11-18T15:39:11Z",
"revision_history": [
{
"date": "2022-11-18T15:39:11Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"product": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"product_id": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"product": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"product_id": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"product": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"product_id": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.i686",
"product": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.i686",
"product_id": "MozillaThunderbird-102.5.0-150200.8.90.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686",
"product": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686",
"product_id": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686",
"product": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686",
"product_id": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686"
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"product": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"product_id": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"product": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"product_id": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"product": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"product_id": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"product": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"product_id": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"product": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"product_id": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"product": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"product_id": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"product": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"product_id": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"product_id": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"product_id": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-42927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42927"
}
],
"notes": [
{
"category": "general",
"text": "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42927",
"url": "https://www.suse.com/security/cve/CVE-2022-42927"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42927",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "important"
}
],
"title": "CVE-2022-42927"
},
{
"cve": "CVE-2022-42928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42928"
}
],
"notes": [
{
"category": "general",
"text": "Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42928",
"url": "https://www.suse.com/security/cve/CVE-2022-42928"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42928",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "important"
}
],
"title": "CVE-2022-42928"
},
{
"cve": "CVE-2022-42929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42929"
}
],
"notes": [
{
"category": "general",
"text": "If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user\u0027s session restore settings. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42929",
"url": "https://www.suse.com/security/cve/CVE-2022-42929"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42929",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "important"
}
],
"title": "CVE-2022-42929"
},
{
"cve": "CVE-2022-42932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-42932"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 106, Firefox ESR \u003c 102.4, and Thunderbird \u003c 102.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-42932",
"url": "https://www.suse.com/security/cve/CVE-2022-42932"
},
{
"category": "external",
"summary": "SUSE Bug 1204421 for CVE-2022-42932",
"url": "https://bugzilla.suse.com/1204421"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "important"
}
],
"title": "CVE-2022-42932"
},
{
"cve": "CVE-2022-45403",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45403"
}
],
"notes": [
{
"category": "general",
"text": "Service Workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media combined with Range requests might have allowed them to determine the presence or length of a media file. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45403",
"url": "https://www.suse.com/security/cve/CVE-2022-45403"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45403",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45403"
},
{
"cve": "CVE-2022-45404",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45404"
}
],
"notes": [
{
"category": "general",
"text": "Through a series of popup and \u003ccode\u003ewindow.print()\u003c/code\u003e calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45404",
"url": "https://www.suse.com/security/cve/CVE-2022-45404"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45404",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45404"
},
{
"cve": "CVE-2022-45405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45405"
}
],
"notes": [
{
"category": "general",
"text": "Freeing arbitrary \u003ccode\u003ensIInputStream\u003c/code\u003e\u0027s on a different thread than creation could have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45405",
"url": "https://www.suse.com/security/cve/CVE-2022-45405"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45405",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45405"
},
{
"cve": "CVE-2022-45406",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45406"
}
],
"notes": [
{
"category": "general",
"text": "If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45406",
"url": "https://www.suse.com/security/cve/CVE-2022-45406"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45406",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45406"
},
{
"cve": "CVE-2022-45408",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45408"
}
],
"notes": [
{
"category": "general",
"text": "Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45408",
"url": "https://www.suse.com/security/cve/CVE-2022-45408"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45408",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45408"
},
{
"cve": "CVE-2022-45409",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45409"
}
],
"notes": [
{
"category": "general",
"text": "The garbage collector could have been aborted in several states and zones and \u003ccode\u003eGCRuntime::finishCollection\u003c/code\u003e may not have been called, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45409",
"url": "https://www.suse.com/security/cve/CVE-2022-45409"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45409",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45409"
},
{
"cve": "CVE-2022-45410",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45410"
}
],
"notes": [
{
"category": "general",
"text": "When a ServiceWorker intercepted a request with \u003ccode\u003eFetchEvent\u003c/code\u003e, the origin of the request was lost after the ServiceWorker took ownership of it. This had the effect of negating SameSite cookie protections. This was addressed in the spec and then in browsers. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45410",
"url": "https://www.suse.com/security/cve/CVE-2022-45410"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45410",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45410"
},
{
"cve": "CVE-2022-45411",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45411"
}
],
"notes": [
{
"category": "general",
"text": "Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies inaccessible to JavaScript (such as cookies protected by HTTPOnly). To mitigate this attack, browsers placed limits on \u003ccode\u003efetch()\u003c/code\u003e and XMLHttpRequest; however some webservers have implemented non-standard headers such as \u003ccode\u003eX-Http-Method-Override\u003c/code\u003e that override the HTTP method, and made this attack possible again. Thunderbird has applied the same mitigations to the use of this and similar headers. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45411",
"url": "https://www.suse.com/security/cve/CVE-2022-45411"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45411",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45411"
},
{
"cve": "CVE-2022-45412",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45412"
}
],
"notes": [
{
"category": "general",
"text": "When resolving a symlink such as \u003ccode\u003efile:///proc/self/fd/1\u003c/code\u003e, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer. \u003cbr\u003e*This bug only affects Thunderbird on Unix-based operated systems (Android, Linux, MacOS). Windows is unaffected.*. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45412",
"url": "https://www.suse.com/security/cve/CVE-2022-45412"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45412",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45412"
},
{
"cve": "CVE-2022-45416",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45416"
}
],
"notes": [
{
"category": "general",
"text": "Keyboard events reference strings like \"KeyA\" that were at fixed, known, and widely-spread addresses. Cache-based timing attacks such as Prime+Probe could have possibly figured out which keys were being pressed. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45416",
"url": "https://www.suse.com/security/cve/CVE-2022-45416"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45416",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45416"
},
{
"cve": "CVE-2022-45418",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45418"
}
],
"notes": [
{
"category": "general",
"text": "If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45418",
"url": "https://www.suse.com/security/cve/CVE-2022-45418"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45418",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45418"
},
{
"cve": "CVE-2022-45420",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45420"
}
],
"notes": [
{
"category": "general",
"text": "Use tables inside of an iframe, an attacker could have caused iframe contents to be rendered outside the boundaries of the iframe, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45420",
"url": "https://www.suse.com/security/cve/CVE-2022-45420"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45420",
"url": "https://bugzilla.suse.com/1205270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45420"
},
{
"cve": "CVE-2022-45421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-45421"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers Andrew McCreight and Gabriele Svelto reported memory safety bugs present in Thunderbird 102.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR \u003c 102.5, Thunderbird \u003c 102.5, and Firefox \u003c 107.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-45421",
"url": "https://www.suse.com/security/cve/CVE-2022-45421"
},
{
"category": "external",
"summary": "SUSE Bug 1205270 for CVE-2022-45421",
"url": "https://bugzilla.suse.com/1205270"
},
{
"category": "external",
"summary": "SUSE Bug 1206343 for CVE-2022-45421",
"url": "https://bugzilla.suse.com/1206343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x",
"openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-18T15:39:11Z",
"details": "critical"
}
],
"title": "CVE-2022-45421"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…