An update for firefox is now available for openEuler-24.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2024-2139 Final 1.0 1.0 2024-09-14 Initial 2024-09-14 2024-09-14 openEuler SA Tool V1.0 2024-09-14 firefox security update An update for firefox is now available for openEuler-24.03-LTS Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fix(es): A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8381) Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated privileges, but their presence would indicate certain browser features had been used, such as when a user opened the Dev Tools console. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8382) Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader installed by default, an unscrupulous program that the user downloaded could register itself as a handler. The website that served the application download could then launch that application at will. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Firefox ESR < 115.15.(CVE-2024-8383) The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8384) An update for firefox is now available for openEuler-24.03-LTS. openEuler Security has rated this update as having a security impact of critical. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Critical firefox https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8381 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8382 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8383 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8384 https://nvd.nist.gov/vuln/detail/CVE-2024-8381 https://nvd.nist.gov/vuln/detail/CVE-2024-8382 https://nvd.nist.gov/vuln/detail/CVE-2024-8383 https://nvd.nist.gov/vuln/detail/CVE-2024-8384 openEuler-24.03-LTS firefox-115.15.0-1.oe2403.aarch64.rpm firefox-debuginfo-115.15.0-1.oe2403.aarch64.rpm firefox-debugsource-115.15.0-1.oe2403.aarch64.rpm firefox-115.15.0-1.oe2403.src.rpm firefox-115.15.0-1.oe2403.x86_64.rpm firefox-debuginfo-115.15.0-1.oe2403.x86_64.rpm firefox-debugsource-115.15.0-1.oe2403.x86_64.rpm A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15. 2024-09-14 CVE-2024-8381 openEuler-24.03-LTS Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H firefox security update 2024-09-14 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139 Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated privileges, but their presence would indicate certain browser features had been used, such as when a user opened the Dev Tools console. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15. 2024-09-14 CVE-2024-8382 openEuler-24.03-LTS High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H firefox security update 2024-09-14 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139 Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader installed by default, an unscrupulous program that the user downloaded could register itself as a handler. The website that served the application download could then launch that application at will. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Firefox ESR < 115.15. 2024-09-14 CVE-2024-8383 openEuler-24.03-LTS High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N firefox security update 2024-09-14 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139 The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15. 2024-09-14 CVE-2024-8384 openEuler-24.03-LTS Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H firefox security update 2024-09-14 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139