ALT-BU-2022-5154-2
Branch p10 update bulletin.
Closed vulnerabilities
Modified: 2023-11-21
BDU:2022-03186
Уязвимость компонента WebApp браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-10-30
BDU:2022-03204
Уязвимость компонента Sharing браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2024-10-30
BDU:2022-03205
Уязвимость компонента UI Foundations браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2023-11-21
BDU:2022-03272
Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03310
Уязвимость компонента Data Transfer браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-10-30
BDU:2022-03323
Уязвимость интерфейса File System API браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю обойти введенные ограничения безопасности
Modified: 2024-10-30
BDU:2022-03325
Уязвимость компонента обучения пользователей браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2024-10-30
BDU:2022-03326
Уязвимость библиотеки ANGLE браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2024-10-30
BDU:2022-03327
Уязвимость компонента обмена сообщениями браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2023-11-21
BDU:2022-03329
Уязвимость браузера Google Chrome, связанная с использованием памяти после её освобождения, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03331
Уязвимость реализации Extensions браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03332
Уязвимость компонента Bookmarks браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-10-30
BDU:2022-03347
Уязвимость компонента Performance Manager браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2023-11-21
BDU:2022-03367
Уязвимость компонента Tab Groups браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Modified: 2024-10-30
BDU:2022-03386
Уязвимость набора инструментов для веб-разработки DevTools браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03824
Уязвимость интерфейса File System API браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03825
Уязвимость режима планшета браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-09-13
BDU:2022-03826
Уязвимость набора инструментов DevTools браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю оказать воздействие на целостность данных
Modified: 2023-11-21
BDU:2022-03827
Уязвимость компонента Extensions API браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-09-13
BDU:2022-03828
Уязвимость компонента COOP браузера Google Chrome , позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2024-09-13
BDU:2022-03829
Уязвимость службы Safe Browsing браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03830
Уязвимость плагина PDF браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию
Modified: 2023-11-21
BDU:2022-03831
Уязвимость интерфейса API расширений браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию или вызвать отказ в обслуживании
BDU:2023-04627
Уязвимость пользовательского интерфейса браузера Google Chrome, позволяющая нарушителю выполнить чтение и запись произвольных файлов
Modified: 2024-11-21
CVE-2022-1633
Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1316990
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1316990
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1634
Use after free in Browser UI in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who had convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific user interactions.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1314908
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1314908
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1635
Use after free in Permission Prompts in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1319797
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1319797
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1636
Use after free in Performance APIs in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1297283
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1297283
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1637
Inappropriate implementation in Web Contents in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1311820
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1311820
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1638
Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2024-11-21
CVE-2022-1639
Use after free in ANGLE in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1317650
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1317650
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1640
Use after free in Sharing in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1320592
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1320592
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1641
Use after free in Web UI Diagnostics in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1305068
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
- https://crbug.com/1305068
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1853
Use after free in Indexed DB in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1324864
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1324864
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1854
Use after free in ANGLE in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1320024
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1320024
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1855
Use after free in Messaging in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1228661
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1228661
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1856
Use after free in User Education in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension or specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1323239
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1323239
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1857
Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass file system restrictions via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1227995
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1227995
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1858
Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1314310
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1314310
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1859
Use after free in Performance Manager in Google Chrome prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1322744
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1322744
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1860
Use after free in UI Foundations in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user interactions.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1297209
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1297209
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1861
Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corruption via specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1316846
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1316846
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1862
Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1236325
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1236325
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1863
Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1292870
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1292870
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1864
Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1320624
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1320624
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1865
Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1289192
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1289192
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1866
Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1292264
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1292264
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1315563
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1315563
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1868
Inappropriate implementation in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1301203
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1301203
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1869
Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1309467
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1309467
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1870
Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1323236
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1323236
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1871
Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass file system policy via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1308199
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1308199
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1872
Insufficient policy enforcement in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1310461
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1310461
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1873
Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1305394
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1305394
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1874
Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61 allowed a remote attacker to bypass downloads protection policy via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1251588
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1251588
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1875
Inappropriate implementation in PDF in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1306443
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1306443
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-1876
Heap buffer overflow in DevTools in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1313600
- https://security.gentoo.org/glsa/202208-25
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1313600
- https://security.gentoo.org/glsa/202208-25
Modified: 2024-11-21
CVE-2022-4918
Use after free in UI in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Medium)
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1315102
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YKLJ3B3D5BCVWE3QNP4N7HHF26OHD567/
- https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html
- https://crbug.com/1315102
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YKLJ3B3D5BCVWE3QNP4N7HHF26OHD567/
Closed bugs
Невозможно запустить RepRaptor через меню приложений.
Package thunderbird updated to version 91.10.0-alt0.p10.1 for branch p10 in task 301335.
Closed vulnerabilities
Modified: 2023-11-21
BDU:2022-04380
Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками отображения символа % в директориях %HOMEPATH% и %APPDATA%, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
Modified: 2023-11-21
BDU:2022-04382
Уязвимость реализации механизма CORS (Cross-Origin Resource Sharing) браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю обойти ограничения безопасности и получить несанкционированный доступ к защищаемой информации
Modified: 2023-11-21
BDU:2022-04383
Уязвимость реализации полноэкранного режима браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю проводить спуфинг-атаки
Modified: 2023-11-21
BDU:2022-04384
Уязвимость реализации механизма CORS (Cross-Origin Resource Sharing) браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю обойти ограничения безопасности
Modified: 2023-11-21
BDU:2022-04429
Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками при инициализации переменных, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2023-11-21
BDU:2022-04430
Уязвимость почтового клиента Thunderbird, связанная с недостаточной проверкой подлинности данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Modified: 2023-11-21
BDU:2022-04438
Уязвимость API для 3D-графики WebGL браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2023-11-21
BDU:2022-04442
Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с копированием буфера без проверки размера входных данных, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
Modified: 2023-11-21
BDU:2022-04557
Уязвимость реализации технологии WASM браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-04-16
CVE-2022-1834
When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. This could have been used by an attacker to send an email message with the attacker's digital signature, that was shown with an arbitrary sender email address chosen by the attacker. If the sender name started with a false email address, followed by many Braille space characters, the attacker's email address was not visible. Because Thunderbird compared the invisible sender address with the signature's email address, if the signing key or certificate was accepted by Thunderbird, the email was shown as having a valid digital signature. This vulnerability affects Thunderbird < 91.10.
Modified: 2025-04-15
CVE-2022-31736
A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1735923
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1735923
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
Modified: 2025-04-16
CVE-2022-31737
A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1743767
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1743767
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1743767
Modified: 2025-04-16
CVE-2022-31738
When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1756388
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1756388
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1756388
Modified: 2025-04-16
CVE-2022-31739
When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.
*This bug only affects Firefox for Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1765049
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1765049
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
Modified: 2025-04-16
CVE-2022-31740
On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1766806
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1766806
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
Modified: 2025-04-15
CVE-2022-31741
A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1767590
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1767590
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1767590
Modified: 2025-04-15
CVE-2022-31742
An attacker could have exploited a timing attack by sending a large number of allowCredential entries and detecting the difference between invalid key handles and cross-origin key handles. This could have led to cross-origin account linking in violation of WebAuthn goals. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/show_bug.cgi?id=1730434
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1730434
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1730434
Modified: 2025-04-15
CVE-2022-31747
Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100 and Firefox ESR 91.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=1760765%2C1765610%2C1766283%2C1767365%2C1768559%2C1768734
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=1760765%2C1765610%2C1766283%2C1767365%2C1768559%2C1768734
- https://www.mozilla.org/security/advisories/mfsa2022-20/
- https://www.mozilla.org/security/advisories/mfsa2022-21/
- https://www.mozilla.org/security/advisories/mfsa2022-22/