Gentoo update for Mozilla Firefox



Published: 2022-02-22
Risk High
Patch available YES
Number of vulnerabilities 62
CVE-ID CVE-2022-22747
CVE-2021-43542
CVE-2021-43543
CVE-2021-43545
CVE-2021-43546
CVE-2022-0511
CVE-2022-22737
CVE-2022-22738
CVE-2022-22739
CVE-2022-22740
CVE-2022-22741
CVE-2022-22742
CVE-2022-22743
CVE-2022-22745
CVE-2022-22748
CVE-2021-43540
CVE-2022-22751
CVE-2022-22753
CVE-2022-22754
CVE-2022-22755
CVE-2022-22756
CVE-2022-22757
CVE-2022-22758
CVE-2022-22759
CVE-2022-22760
CVE-2022-22761
CVE-2022-22762
CVE-2022-22763
CVE-2022-22764
CVE-2021-43541
CVE-2021-43539
CVE-2021-29970
CVE-2021-29989
CVE-2021-29972
CVE-2021-29974
CVE-2021-29975
CVE-2021-29976
CVE-2021-29977
CVE-2021-29980
CVE-2021-29981
CVE-2021-29982
CVE-2021-29984
CVE-2021-29985
CVE-2021-29986
CVE-2021-29987
CVE-2021-29988
CVE-2021-29990
CVE-2021-43538
CVE-2021-30547
CVE-2021-38491
CVE-2021-38493
CVE-2021-38495
CVE-2021-38503
CVE-2021-38504
CVE-2021-38506
CVE-2021-38507
CVE-2021-38508
CVE-2021-38509
CVE-2021-4129
CVE-2021-4140
CVE-2021-43536
CVE-2021-43537
CWE-ID CWE-20
CWE-200
CWE-254
CWE-835
CWE-451
CWE-119
CWE-416
CWE-122
CWE-1021
CWE-787
CWE-264
CWE-367
CWE-664
CWE-357
CWE-346
CWE-939
CWE-843
CWE-125
CWE-704
Exploitation vector Network
Public exploit Public exploit code for vulnerability #43 is available.
Vulnerable software
Subscribe
Gentoo Linux
Operating systems & Components / Operating system

Vendor Gentoo

Security Bulletin

This security bulletin contains information about 62 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU59379

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22747

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of empty pkcs7 sequence, passed as part of the certificate data. A remote attacker can pass specially crafted certificate to the application and perform a denial of service (DoS) attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Information disclosure

EUVDB-ID: #VU58612

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43542

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the way Firefox handles XMLHttpRequest requests. A remote attacker can initiate a XMLHttpRequest and identify installed applications by probing error messages for loading external protocols.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Security features bypass

EUVDB-ID: #VU58613

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43543

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error when handling CSP policies. Documents loaded with the CSP sandbox directive can escape the sandbox's script restriction by embedding additional content.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

4) Infinite loop

EUVDB-ID: #VU58615

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43545

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop when using Location API. A remote attacker can consume all available system resources and cause denial of service conditions.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

5) Spoofing attack

EUVDB-ID: #VU58616

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43546

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data, when native cursor is zoomed. A remote attacker can perform cursor spoofing attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

6) Buffer overflow

EUVDB-ID: #VU60415

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-0511

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted webpage, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

7) Use-after-free

EUVDB-ID: #VU59372

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22737

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a race condition playing audio files. A remote attacker can construct a specially crafted audio skin, trigger a use-after-free error and execute arbitrary code on the system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

8) Heap-based buffer overflow

EUVDB-ID: #VU59371

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22738

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in blendGaussianBlur when applying CSS filter. A remote attacker can trick the victim to open a specially crafted web page, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

9) Security features bypass

EUVDB-ID: #VU59381

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22739

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to missing throttling on external protocol launch dialog. A malicious websites can trick users into accepting launching a program to handle an external URL protocol.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

10) Use-after-free

EUVDB-ID: #VU59370

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22740

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in ChannelEventQueue::mOwner when releasing a network request handle. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

11) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU59369

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22741

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error resizing a popup while requesting fullscreen access. A remote attacker can trick the victim to open a specially crafted web page,  and make the browser unable to leave fullscreen mode.

Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

12) Out-of-bounds write

EUVDB-ID: #VU59368

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22742

CWE-ID: CWE-787 - Out-of-bounds Write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted input, when inserting text while in edit mode. A remote attacker can create a specially crafted website, trick the victim into opening it and insert specially crafted input in the edit mode, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

13) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU59367

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22743

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when navigating from inside an iframe while requesting fullscreen access. A remote attacker can trick the victim to open a specially crafted web page,  and make the browser unable to leave fullscreen mode.

Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

14) Information disclosure

EUVDB-ID: #VU59377

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22745

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to Securitypolicyviolation events leak cross-origin information for frame-ancestors violations. A remote attacker can gain access to sensitive data.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

15) Spoofing attack

EUVDB-ID: #VU59376

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22748

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data. Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

16) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU58610

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43540

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error with WebExtensions that causes a WebExtension with the correct permissions to create and install ServiceWorkers for third-party websites that cannot be uninstalled with the extension.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

17) Buffer overflow

EUVDB-ID: #VU59382

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22751

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

18) Time-of-check Time-of-use (TOCTOU) Race Condition

EUVDB-ID: #VU60372

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22753

CWE-ID: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in the Maintenance (Updater) Service. A local unprivileged user can grant Users write access to an arbitrary directory on the system and execute arbitrary code with SYSTEM privileges.

Note, the vulnerability affects Windows installations only.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

19) Security restrictions bypass

EUVDB-ID: #VU60395

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22754

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the way Firefox handles extensions updates. A remote attacker can trick the victim to install a browser extension of a particular type and during auto-update bypass the prompt which grants the new version the new requested permissions. As a result an extension with limited permissions can be used to compromise the system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

20) Improper control of a resource through its lifetime

EUVDB-ID: #VU60397

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22755

CWE-ID: CWE-664 - Improper control of a resource through its lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the way XSL documents are handled by the browser. A remote attacker can trick the victim to load a specially crafted XSL document that can continue JavaScript execution within the bounds of the same-origin policy even after the browser tab is closed.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

21) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU60398

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22756

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker execute arbitrary code.

The vulnerability exists due to browser fails to properly identify a malicious file during drag and drop operations. A remote attacker can trick the victim to drag and drop an image to their desktop or other folder and change the resulting object into an executable script which will be executed after the user clicked on it.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

22) Origin validation error

EUVDB-ID: #VU60399

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22757

CWE-ID: CWE-346 - Origin Validation Error

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the Remote Agent, used in WebDriver, does not validate the Host or Origin headers. A remote website can force the browser to connect back locally to the user's browser to control it.

Successful exploitation of the vulnerability requires that WebDriver is enabled (not the default configuration).

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

23) Improper Authorization in Handler for Custom URL Scheme

EUVDB-ID: #VU60405

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22758

CWE-ID: CWE-939 - Improper Authorization in Handler for Custom URL Scheme

Exploit availability: No

Description

The vulnerability allows a remote attacker to force the victim to make unwanted phone calls.

The vulnerability exists in the way tel: link are handled. When clicking on a tel: link, USSD codes, specified after a certain character is included in the phone number. On certain phones, or on certain carriers, if the number was dialed this could perform actions on a user's account, similar to a cross-site request forgery attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

24) Sandbox restrictions bypass

EUVDB-ID: #VU60406

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22759

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the way iframes are handled by the browser. If a document created a sandboxed iframe without allow-scripts, and subsequently appended an element to the iframe's document that e.g. had a JavaScript event handler - the event handler would have run despite the iframe's sandbox.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

25) Information disclosure

EUVDB-ID: #VU60409

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22760

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the way Firefox displays error messages in cross-origin responses, when importing resources using Web Workers. A remote attacker can distinguish the difference between application/javascript responses and non-script responses and learn information cross-origin.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

26) Security features bypass

EUVDB-ID: #VU60411

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22761

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform unauthorized actions.

The vulnerability exists due to frame-ancestors Content Security Policy directive was not enforced for framed extension pages (pages with a moz-extension:// scheme). A remote attacker perform unauthorized actions.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

27) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU60412

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-22762

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error when handling JavaScript dialogs. Under certain circumstances, a JavaScript alert (or prompt) could have been shown while another website was displayed underneath it.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

28) Improper control of a resource through its lifetime

EUVDB-ID: #VU60414

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-22763

CWE-ID: CWE-664 - Improper control of a resource through its lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error when handling script execution during invalid object state. A remote attacker can cause a script to run late in the lifecycle, at a point after where it should not be possible.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

29) Buffer overflow

EUVDB-ID: #VU60413

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-22764

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

30) Input validation error

EUVDB-ID: #VU58611

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43541

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to insufficient validation of user-supplied input when handling spaces in URLS with external protocol handlers. A remote attacker can trick the victim to click on a specially crafted link and pass unescaped input to a third-party application via URI handler.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

31) Use-after-free

EUVDB-ID: #VU58608

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-43539

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in GC rooting when calling wasm instance methods. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

32) Use-after-free

EUVDB-ID: #VU54678

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29970

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in accessibility features when processing HTML content. A remote attacker can track the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

33) Buffer overflow

EUVDB-ID: #VU55685

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29989

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

34) Use-after-free

EUVDB-ID: #VU54681

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-29972

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in an outdated Cairo library. A remote attacker can create a specially crafted web page, trick the victim into visiting it, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

35) Security restrictions bypass

EUVDB-ID: #VU54683

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-29974

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to application allows to override HSTS error, when network partitioning was enabled. As a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

36) Spoofing attack

EUVDB-ID: #VU54684

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-29975

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data. Through a series of DOM manipulations, a message, over which the attacker had control of the text but not HTML or formatting, could be overlaid on top of another domain (with the new domain correctly shown in the address bar) resulting in possible user confusion.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

37) Buffer overflow

EUVDB-ID: #VU54679

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29976

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

38) Buffer overflow

EUVDB-ID: #VU54685

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29977

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

39) Memory corruption

EUVDB-ID: #VU55683

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29980

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in a canvas object. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

40) Input validation error

EUVDB-ID: #VU55679

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29981

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to insufficient validation of user-supplied input when lowering/register allocation during live range splitting. A remote attacker can create a specially crafted web page, trick the victim into visiting it, trigger register confusion failures in JITted code and execute arbitrary code on the system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

41) Type Confusion

EUVDB-ID: #VU55687

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-29982

CWE-ID: CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to incorrect JIT optimization and a type confusion error. A remote attacker can trick the victim to open a specially crafted web page and read a single bit of memory.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

42) Buffer overflow

EUVDB-ID: #VU55682

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29984

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when performing JIT optimization. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

43) Use-after-free

EUVDB-ID: #VU55684

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29985

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a use-after-free error in media channels within the MediaCacheStream::NotifyDataReceived method. A remote attacker can trick the victim to open a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

44) Buffer overflow

EUVDB-ID: #VU55678

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29986

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a race condition in getaddrinfowhen resolving DNS names. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note, the vulnerability affects Linux systems only.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

45) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU55686

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-29987

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the way Firefox displays permission panels. After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a different position but still record a click in the default location, making it possible to trick a user into accepting a permission they did not want to.

Note, the vulnerability affects Linux installations only.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

46) Out-of-bounds read

EUVDB-ID: #VU55680

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29988

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a boundary condition when treating inline list-item element as a block element. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger an out-of-bounds read error and execute arbitrary code on the system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

47) Buffer overflow

EUVDB-ID: #VU55688

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-29990

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

48) Spoofing attack

EUVDB-ID: #VU58607

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43538

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to a race in notification code. A remote attacker can hide the notification for pages that had received full screen and pointer lock access. Successful exploitation of the vulnerability may allow an attacker to perform spoofing attack.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

49) Out-of-bounds write

EUVDB-ID: #VU54002

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30547

CWE-ID: CWE-787 - Out-of-bounds Write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted HTML content in ANGLE. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

50) Security restrictions bypass

EUVDB-ID: #VU56372

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38491

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to Mixed-Content-Blocking was unable to check opaque origins. As a result, the mixed-content checks were unable to analyze opaque origins which led to some mixed content being loaded.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

51) Buffer overflow

EUVDB-ID: #VU56374

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38493

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

52) Buffer overflow

EUVDB-ID: #VU56376

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38495

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

53) Security features bypass

EUVDB-ID: #VU57876

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38503

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the iframe sandbox rules were not correctly applied to XSLT stylesheets. A remote attacker can load use an iframe to bypass restrictions such as executing scripts or navigating the top-level frame.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

54) Use-after-free

EUVDB-ID: #VU57878

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-38504

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when interacting with an HTML input element's file picker dialog with webkitdirectory set. A remote attacker can trick the victim to open a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

55) Insufficient UI Warning of Dangerous Operations

EUVDB-ID: #VU57880

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-38506

CWE-ID: CWE-357 - Insufficient UI Warning of Dangerous Operations

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attacks.

The vulnerability exists due to Firefox could have entered fullscreen mode without notification or warning to the user. A remote attacker can perform spoofing attacks on the browser UI.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

56) Security features bypass

EUVDB-ID: #VU57881

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38507

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the Opportunistic Encryption feature of HTTP2, which allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP address (e.g. port 8443) did not opt-in to opportunistic encryption; a network attacker could forward a connection from the browser from port 443 to port 8443, causing the browser to treat the content of port 8443 as same-origin with HTTP. As a result, a remote attacker can bypass Same-Origin-Policy on services hosted on other ports.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

57) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU57882

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38508

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to Firefox displays the form validity message in the correct location at the same time as a permission prompt (such as for geolocation). The validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

58) Improper Restriction of Rendered UI Layers or Frames

EUVDB-ID: #VU57883

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-38509

CWE-ID: CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of an unusual sequence of attacker-controlled events. A remote attacker can display a Javascript alert() dialog with arbitrary (although unstyled) contents over top of arbitrary webpage of the attacker's choosing.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

59) Buffer overflow

EUVDB-ID: #VU58617

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-4129

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

60) Security features bypass

EUVDB-ID: #VU59373

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-4140

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to an error in iframe sandbox implementation when processing XSLT markup. A remote attacker can bypass iframe sandbox and execute arbitrary JavaScript code in context of arbitrary window.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

61) Information disclosure

EUVDB-ID: #VU58585

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-43536

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to URL leakage when executing asynchronous functions. A remote attacker can trick the victim to open a specially crafted web page and reveal the URL of the page that is being visited afterwards.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

62) Type conversion

EUVDB-ID: #VU58586

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-43537

CWE-ID: CWE-704 - Incorrect Type Conversion or Cast (Type Conversion)

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a type conversion error when processing sizes from 64bit to 32bit integers when using structured clone. A remote attacker can trick the victim to visit a specially crafted web page, trigger a heap-based buffer overflow and execute arbitrary code on the system.

Mitigation

Update the affected packages.
www-client/firefox to version: 97.0
www-client/firefox-bin to version: 97.0

Vulnerable software versions

Gentoo Linux: All versions


CPE2.3 External links

http://security.gentoo.org/
http://security.gentoo.org/glsa/202202-03

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###