Gentoo: GLSA-202401-10: Mozilla Firefox: Multiple Vulnerabilities
Summary
Multiple vulnerabilities have been discovered in Mozilla Firefox. Please
review the CVE identifiers referenced below for details.
Resolution
All Mozilla Firefox ESR binary users should upgrade to the latest
version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/firefox-bin-115.6.0:esr"
All Mozilla Firefox ESR users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/firefox-115.6.0:esr"
All Mozilla Firefox binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/firefox-bin-121.0:rapid"
All Mozilla Firefox users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/firefox-121.0:rapid"
References
[ 1 ] CVE-2023-3482
https://nvd.nist.gov/vuln/detail/CVE-2023-3482
[ 2 ] CVE-2023-4058
https://nvd.nist.gov/vuln/detail/CVE-2023-4058
[ 3 ] CVE-2023-4579
https://nvd.nist.gov/vuln/detail/CVE-2023-4579
[ 4 ] CVE-2023-4863
https://nvd.nist.gov/vuln/detail/CVE-2023-4863
[ 5 ] CVE-2023-5129
https://nvd.nist.gov/vuln/detail/CVE-2023-5129
[ 6 ] CVE-2023-5170
https://nvd.nist.gov/vuln/detail/CVE-2023-5170
[ 7 ] CVE-2023-5172
https://nvd.nist.gov/vuln/detail/CVE-2023-5172
[ 8 ] CVE-2023-5173
https://nvd.nist.gov/vuln/detail/CVE-2023-5173
[ 9 ] CVE-2023-5175
https://nvd.nist.gov/vuln/detail/CVE-2023-5175
[ 10 ] CVE-2023-5722
https://nvd.nist.gov/vuln/detail/CVE-2023-5722
[ 11 ] CVE-2023-5723
https://nvd.nist.gov/vuln/detail/CVE-2023-5723
[ 12 ] CVE-2023-5729
https://nvd.nist.gov/vuln/detail/CVE-2023-5729
[ 13 ] CVE-2023-5731
https://nvd.nist.gov/vuln/detail/CVE-2023-5731
[ 14 ] CVE-2023-5758
https://nvd.nist.gov/vuln/detail/CVE-2023-5758
[ 15 ] CVE-2023-6135
https://nvd.nist.gov/vuln/detail/CVE-2023-6135
[ 16 ] CVE-2023-6210
https://nvd.nist.gov/vuln/detail/CVE-2023-6210
[ 17 ] CVE-2023-6211
https://nvd.nist.gov/vuln/detail/CVE-2023-6211
[ 18 ] CVE-2023-6213
https://nvd.nist.gov/vuln/detail/CVE-2023-6213
[ 19 ] CVE-2023-6856
https://nvd.nist.gov/vuln/detail/CVE-2023-6856
[ 20 ] CVE-2023-6857
https://nvd.nist.gov/vuln/detail/CVE-2023-6857
[ 21 ] CVE-2023-6858
https://nvd.nist.gov/vuln/detail/CVE-2023-6858
[ 22 ] CVE-2023-6859
https://nvd.nist.gov/vuln/detail/CVE-2023-6859
[ 23 ] CVE-2023-6860
https://nvd.nist.gov/vuln/detail/CVE-2023-6860
[ 24 ] CVE-2023-6861
https://nvd.nist.gov/vuln/detail/CVE-2023-6861
[ 25 ] CVE-2023-6862
https://nvd.nist.gov/vuln/detail/CVE-2023-6862
[ 26 ] CVE-2023-6863
https://nvd.nist.gov/vuln/detail/CVE-2023-6863
[ 27 ] CVE-2023-6864
https://nvd.nist.gov/vuln/detail/CVE-2023-6864
[ 28 ] CVE-2023-6865
https://nvd.nist.gov/vuln/detail/CVE-2023-6865
[ 29 ] CVE-2023-6866
https://nvd.nist.gov/vuln/detail/CVE-2023-6866
[ 30 ] CVE-2023-6867
https://nvd.nist.gov/vuln/detail/CVE-2023-6867
[ 31 ] CVE-2023-6868
https://nvd.nist.gov/vuln/detail/CVE-2023-6868
[ 32 ] CVE-2023-6869
https://nvd.nist.gov/vuln/detail/CVE-2023-6869
[ 33 ] CVE-2023-6870
https://nvd.nist.gov/vuln/detail/CVE-2023-6870
[ 34 ] CVE-2023-6871
https://nvd.nist.gov/vuln/detail/CVE-2023-6871
[ 35 ] CVE-2023-6872
https://nvd.nist.gov/vuln/detail/CVE-2023-6872
[ 36 ] CVE-2023-6873
https://nvd.nist.gov/vuln/detail/CVE-2023-6873
[ 37 ] CVE-2023-32205
https://nvd.nist.gov/vuln/detail/CVE-2023-32205
[ 38 ] CVE-2023-32206
https://nvd.nist.gov/vuln/detail/CVE-2023-32206
[ 39 ] CVE-2023-32207
https://nvd.nist.gov/vuln/detail/CVE-2023-32207
[ 40 ] CVE-2023-32208
https://nvd.nist.gov/vuln/detail/CVE-2023-32208
[ 41 ] CVE-2023-32209
https://nvd.nist.gov/vuln/detail/CVE-2023-32209
[ 42 ] CVE-2023-32210
https://nvd.nist.gov/vuln/detail/CVE-2023-32210
[ 43 ] CVE-2023-32211
https://nvd.nist.gov/vuln/detail/CVE-2023-32211
[ 44 ] CVE-2023-32212
https://nvd.nist.gov/vuln/detail/CVE-2023-32212
[ 45 ] CVE-2023-32213
https://nvd.nist.gov/vuln/detail/CVE-2023-32213
[ 46 ] CVE-2023-32214
https://nvd.nist.gov/vuln/detail/CVE-2023-32214
[ 47 ] CVE-2023-32215
https://nvd.nist.gov/vuln/detail/CVE-2023-32215
[ 48 ] CVE-2023-32216
https://nvd.nist.gov/vuln/detail/CVE-2023-32216
[ 49 ] CVE-2023-34414
https://nvd.nist.gov/vuln/detail/CVE-2023-34414
[ 50 ] CVE-2023-34415
https://nvd.nist.gov/vuln/detail/CVE-2023-34415
[ 51 ] CVE-2023-34416
https://nvd.nist.gov/vuln/detail/CVE-2023-34416
[ 52 ] CVE-2023-34417
https://nvd.nist.gov/vuln/detail/CVE-2023-34417
[ 53 ] CVE-2023-37203
https://nvd.nist.gov/vuln/detail/CVE-2023-37203
[ 54 ] CVE-2023-37204
https://nvd.nist.gov/vuln/detail/CVE-2023-37204
[ 55 ] CVE-2023-37205
https://nvd.nist.gov/vuln/detail/CVE-2023-37205
[ 56 ] CVE-2023-37206
https://nvd.nist.gov/vuln/detail/CVE-2023-37206
[ 57 ] CVE-2023-37209
https://nvd.nist.gov/vuln/detail/CVE-2023-37209
[ 58 ] CVE-2023-37210
https://nvd.nist.gov/vuln/detail/CVE-2023-37210
[ 59 ] CVE-2023-37212
https://nvd.nist.gov/vuln/detail/CVE-2023-37212
[ 60 ] MFSA-2023-40
[ 61 ] MFSA-TMP-2023-0002
Availability
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
https://security.gentoo.org/glsa/202401-10
Concerns
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.
Synopsis
Multiple vulnerabilities have been found in Mozilla Firefox, the worst
of which could lead to remote code execution.
Background
Mozilla Firefox is a popular open-source web browser from the Mozilla
project.
Affected Packages
Package Vulnerable Unaffected
---------------------- ------------- --------------
www-client/firefox < 115.6.0:esr >= 115.6.0:esr
< 121.0:rapid >= 121.0:rapid
www-client/firefox-bin < 115.6.0:esr >= 115.6.0:esr
< 121.0:rapid >= 121.0:rapid
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.