suse-su-2023:4532-1
Vulnerability from csaf_suse
Published
2023-11-22 18:20
Modified
2023-11-22 18:20
Summary
Security update for MozillaFirefox
Notes
Title of the patch
Security update for MozillaFirefox
Description of the patch
This update for MozillaFirefox fixes the following issues:
- Firefox Extended Support Release 115.5.0 ESR Placeholder changelog-entry (bsc#1217230)
* Fixed: Various security fixes and other quality improvements. MFSA 2023-46 (bsc#1216338)
* CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
* CVE-2023-5732: Address bar spoofing via bidirectional characters
* CVE-2023-5724: Large WebGL draw could have led to a crash
* CVE-2023-5725: WebExtensions could open arbitrary URLs
* CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
* CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle, .appx, and .appxbundle files on Windows
* CVE-2023-5728: Improper object tracking during GC in the JavaScript engine could have led to a crash.
* CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4.1
Patchnames
SUSE-2023-4532,SUSE-SLE-SDK-12-SP5-2023-4532,SUSE-SLE-SERVER-12-SP5-2023-4532
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\n- Firefox Extended Support Release 115.5.0 ESR Placeholder changelog-entry (bsc#1217230)\n\n * Fixed: Various security fixes and other quality improvements. MFSA 2023-46 (bsc#1216338)\n * CVE-2023-5721: Queued up rendering could have allowed websites to clickjack\n * CVE-2023-5732: Address bar spoofing via bidirectional characters\n * CVE-2023-5724: Large WebGL draw could have led to a crash\n * CVE-2023-5725: WebExtensions could open arbitrary URLs\n * CVE-2023-5726: Full screen notification obscured by file open dialog on macOS\n * CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle, .appx, and .appxbundle files on Windows\n * CVE-2023-5728: Improper object tracking during GC in the JavaScript engine could have led to a crash.\n * CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4.1\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-4532,SUSE-SLE-SDK-12-SP5-2023-4532,SUSE-SLE-SERVER-12-SP5-2023-4532",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4532-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:4532-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20234532-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:4532-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-November/017178.html"
},
{
"category": "self",
"summary": "SUSE Bug 1216338",
"url": "https://bugzilla.suse.com/1216338"
},
{
"category": "self",
"summary": "SUSE Bug 1217230",
"url": "https://bugzilla.suse.com/1217230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5721 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5724 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5725 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5726 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5727 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5728 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5730 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5732 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5732/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2023-11-22T18:20:09Z",
"generator": {
"date": "2023-11-22T18:20:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:4532-1",
"initial_release_date": "2023-11-22T18:20:09Z",
"revision_history": [
{
"date": "2023-11-22T18:20:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-115.5.0-112.191.1.aarch64",
"product": {
"name": "MozillaFirefox-115.5.0-112.191.1.aarch64",
"product_id": "MozillaFirefox-115.5.0-112.191.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.aarch64",
"product": {
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.aarch64",
"product_id": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"product_id": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.aarch64",
"product": {
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.aarch64",
"product_id": "MozillaFirefox-translations-other-115.5.0-112.191.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"product": {
"name": "MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"product_id": "MozillaFirefox-devel-115.5.0-112.191.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-115.5.0-112.191.1.ppc64le",
"product": {
"name": "MozillaFirefox-115.5.0-112.191.1.ppc64le",
"product_id": "MozillaFirefox-115.5.0-112.191.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.ppc64le",
"product": {
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.ppc64le",
"product_id": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"product_id": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.ppc64le",
"product": {
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.ppc64le",
"product_id": "MozillaFirefox-translations-other-115.5.0-112.191.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-115.5.0-112.191.1.s390x",
"product": {
"name": "MozillaFirefox-115.5.0-112.191.1.s390x",
"product_id": "MozillaFirefox-115.5.0-112.191.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.s390x",
"product": {
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.s390x",
"product_id": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"product": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"product_id": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.s390x",
"product": {
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.s390x",
"product_id": "MozillaFirefox-translations-other-115.5.0-112.191.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-115.5.0-112.191.1.x86_64",
"product": {
"name": "MozillaFirefox-115.5.0-112.191.1.x86_64",
"product_id": "MozillaFirefox-115.5.0-112.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.x86_64",
"product_id": "MozillaFirefox-branding-upstream-115.5.0-112.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"product_id": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-115.5.0-112.191.1.x86_64",
"product_id": "MozillaFirefox-translations-other-115.5.0-112.191.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-115.5.0-112.191.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
},
"product_reference": "MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-115.5.0-112.191.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
},
"product_reference": "MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-115.5.0-112.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64"
},
"product_reference": "MozillaFirefox-115.5.0-112.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-115.5.0-112.191.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
},
"product_reference": "MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-5721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5721"
}
],
"notes": [
{
"category": "general",
"text": "It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an insufficient activation-delay. This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5721",
"url": "https://www.suse.com/security/cve/CVE-2023-5721"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5721",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5721"
},
{
"cve": "CVE-2023-5724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5724"
}
],
"notes": [
{
"category": "general",
"text": "Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5724",
"url": "https://www.suse.com/security/cve/CVE-2023-5724"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5724",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5724"
},
{
"cve": "CVE-2023-5725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5725"
}
],
"notes": [
{
"category": "general",
"text": "A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data. This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5725",
"url": "https://www.suse.com/security/cve/CVE-2023-5725"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5725",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5725"
},
{
"cve": "CVE-2023-5726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5726"
}
],
"notes": [
{
"category": "general",
"text": "A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and possible spoofing attacks. \n*Note: This issue only affected macOS operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5726",
"url": "https://www.suse.com/security/cve/CVE-2023-5726"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5726",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5726"
},
{
"cve": "CVE-2023-5727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5727"
}
],
"notes": [
{
"category": "general",
"text": "The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user\u0027s computer. \n*Note: This issue only affected Windows operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5727",
"url": "https://www.suse.com/security/cve/CVE-2023-5727"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5727",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5727"
},
{
"cve": "CVE-2023-5728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5728"
}
],
"notes": [
{
"category": "general",
"text": "During garbage collection extra operations were performed on a object that should not be. This could have led to a potentially exploitable crash. This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5728",
"url": "https://www.suse.com/security/cve/CVE-2023-5728"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5728",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5728"
},
{
"cve": "CVE-2023-5730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5730"
}
],
"notes": [
{
"category": "general",
"text": "Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 119, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5730",
"url": "https://www.suse.com/security/cve/CVE-2023-5730"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5730",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5730"
},
{
"cve": "CVE-2023-5732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5732"
}
],
"notes": [
{
"category": "general",
"text": "An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited. This vulnerability affects Firefox \u003c 117, Firefox ESR \u003c 115.4, and Thunderbird \u003c 115.4.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5732",
"url": "https://www.suse.com/security/cve/CVE-2023-5732"
},
{
"category": "external",
"summary": "SUSE Bug 1216338 for CVE-2023-5732",
"url": "https://bugzilla.suse.com/1216338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:MozillaFirefox-translations-common-115.5.0-112.191.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:MozillaFirefox-devel-115.5.0-112.191.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-11-22T18:20:09Z",
"details": "important"
}
],
"title": "CVE-2023-5732"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…