{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"Critical" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"firefox security update", "category":"general", "title":"Synopsis" }, { "text":"An update for firefox is now available for openEuler-24.03-LTS", "category":"general", "title":"Summary" }, { "text":"Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions.\n\nSecurity Fix(es):\n\nA potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8381)\n\nInternal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated privileges, but their presence would indicate certain browser features had been used, such as when a user opened the Dev Tools console. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8382)\n\nFirefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader installed by default, an unscrupulous program that the user downloaded could register itself as a handler. The website that served the application download could then launch that application at will. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Firefox ESR < 115.15.(CVE-2024-8383)\n\nThe JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.(CVE-2024-8384)", "category":"general", "title":"Description" }, { "text":"An update for firefox is now available for openEuler-24.03-LTS.\n\nopenEuler Security has rated this update as having a security impact of critical. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"Critical", "category":"general", "title":"Severity" }, { "text":"firefox", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2024-2139", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139" }, { "summary":"CVE-2024-8381", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8381&packageName=firefox" }, { "summary":"CVE-2024-8382", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8382&packageName=firefox" }, { "summary":"CVE-2024-8383", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8383&packageName=firefox" }, { "summary":"CVE-2024-8384", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-8384&packageName=firefox" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8381" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8382" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8383" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8384" }, { "summary":"openEuler-SA-2024-2139 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2024/csaf-openeuler-sa-2024-2139.json" } ], "title":"An update for firefox is now available for openEuler-24.03-LTS", "tracking":{ "initial_release_date":"2024-09-14T20:22:03+08:00", "revision_history":[ { "date":"2024-09-14T20:22:03+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2024-09-14T20:22:03+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2024-09-14T20:22:03+08:00", "id":"openEuler-SA-2024-2139", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"openEuler-24.03-LTS", "name":"openEuler-24.03-LTS" }, "name":"openEuler-24.03-LTS", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-115.15.0-1.oe2403.aarch64.rpm", "name":"firefox-115.15.0-1.oe2403.aarch64.rpm" }, "name":"firefox-115.15.0-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-debuginfo-115.15.0-1.oe2403.aarch64.rpm", "name":"firefox-debuginfo-115.15.0-1.oe2403.aarch64.rpm" }, "name":"firefox-debuginfo-115.15.0-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-debugsource-115.15.0-1.oe2403.aarch64.rpm", "name":"firefox-debugsource-115.15.0-1.oe2403.aarch64.rpm" }, "name":"firefox-debugsource-115.15.0-1.oe2403.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-115.15.0-1.oe2403.src.rpm", "name":"firefox-115.15.0-1.oe2403.src.rpm" }, "name":"firefox-115.15.0-1.oe2403.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-115.15.0-1.oe2403.x86_64.rpm", "name":"firefox-115.15.0-1.oe2403.x86_64.rpm" }, "name":"firefox-115.15.0-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-debuginfo-115.15.0-1.oe2403.x86_64.rpm", "name":"firefox-debuginfo-115.15.0-1.oe2403.x86_64.rpm" }, "name":"firefox-debuginfo-115.15.0-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"firefox-debugsource-115.15.0-1.oe2403.x86_64.rpm", "name":"firefox-debugsource-115.15.0-1.oe2403.x86_64.rpm" }, "name":"firefox-debugsource-115.15.0-1.oe2403.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-115.15.0-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "name":"firefox-115.15.0-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-debuginfo-115.15.0-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "name":"firefox-debuginfo-115.15.0-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-debugsource-115.15.0-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "name":"firefox-debugsource-115.15.0-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-115.15.0-1.oe2403.src.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "name":"firefox-115.15.0-1.oe2403.src as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-115.15.0-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "name":"firefox-115.15.0-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-debuginfo-115.15.0-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "name":"firefox-debuginfo-115.15.0-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"firefox-debugsource-115.15.0-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64", "name":"firefox-debugsource-115.15.0-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2024-8381", "notes":[ { "text":"A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"CRITICAL", "baseScore":9.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] } ], "threats":[ { "details":"Critical", "category":"impact" } ], "title":"CVE-2024-8381" }, { "cve":"CVE-2024-8382", "notes":[ { "text":"Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated privileges, but their presence would indicate certain browser features had been used, such as when a user opened the Dev Tools console. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":8.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-8382" }, { "cve":"CVE-2024-8383", "notes":[ { "text":"Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader installed by default, an unscrupulous program that the user downloaded could register itself as a handler. The website that served the application download could then launch that application at will. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Firefox ESR < 115.15.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.5, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version":"3.1" }, "products":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-8383" }, { "cve":"CVE-2024-8384", "notes":[ { "text":"The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ], "details":"firefox security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2139" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"CRITICAL", "baseScore":9.8, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.aarch64", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.src", "openEuler-24.03-LTS:firefox-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debuginfo-115.15.0-1.oe2403.x86_64", "openEuler-24.03-LTS:firefox-debugsource-115.15.0-1.oe2403.x86_64" ] } ], "threats":[ { "details":"Critical", "category":"impact" } ], "title":"CVE-2024-8384" } ] }