SUSE-SU-2023:2959-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2023/suse-su-20232959-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2023:2959-1

Upstream

CVE-2023-3600

Related

CVE-2023-3600

Published

2023-07-25T07:21:54Z

Modified

2026-02-04T03:44:53.773633Z

Summary

Security update for MozillaFirefox

Details

This update for MozillaFirefox fixes the following issues:

Firefox Extended Support Release 115.0.2 ESR (MFSA 2023-26, bsc#1213230)

Security fixes:

CVE-2023-3600: Fixed use-after-free in workers (bmo#1839703)

Other fixes:

Fixed a startup crash experienced by some Windows users by blocking instances of a malicious injected DLL (bmo#1841751)
Fixed a bug with displaying a caret in the text editor on some websites (bmo#1840804)
Fixed a bug with broken audio rendering on some websites (bmo#1841982)
Fixed a bug with patternTransform translate using the wrong units (bmo#1840746)
Fixed a crash affecting Windows 7 users related to the DLL blocklist.

Firefox Extended Support Release 115.0.1 ESR

Fixed a startup crash for Windows users with Kingsoft Antivirus software installed (bmo#1837242)

References

Affected packages

SUSE:Linux Enterprise Server 12 SP2-BCL

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Server 12 SP4-ESPOS

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-ESPOS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Server 12 SP4-LTSS

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Server 12 SP5

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Server for SAP Applications 12 SP4

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Server for SAP Applications 12 SP5

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:Linux Enterprise Software Development Kit 12 SP5

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-devel": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:OpenStack Cloud 9

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20OpenStack%20Cloud%209

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"

SUSE:OpenStack Cloud Crowbar 9

MozillaFirefox

Package

Name: MozillaFirefox
Purl: pkg:rpm/suse/MozillaFirefox&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

115.0.2-112.170.2

Ecosystem specific

{
    "binaries": [
        {
            "MozillaFirefox-translations-common": "115.0.2-112.170.2",
            "MozillaFirefox-devel": "115.0.2-112.170.2",
            "MozillaFirefox": "115.0.2-112.170.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2959-1.json"