Debian Firefox vulnerabilities

CVE-2022-29914 [MEDIUM] CVE-2022-29914: firefox - When reusing existing popups Firefox would have allowed them to cover the fullsc... When reusing existing popups Firefox would have allowed them to cover the fullscreen notification UI, which could have enabled browser spoofing attacks. This vulnerability affects Thunderbird < 91.9, Firefox ESR < 91.9, and Firefox < 100. Scope: local sid: resolved (fixed in 100.0-1)

CVE-2022-46877 [MEDIUM] CVE-2022-46877: firefox - By confusing the browser, the fullscreen notification could have been delayed or... By confusing the browser, the fullscreen notification could have been delayed or suppressed, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox < 108. Scope: local sid: resolved (fixed in 108.0-1)

CVE-2022-22747 [MEDIUM] CVE-2022-22747: firefox - After accepting an untrusted certificate, handling an empty pkcs7 sequence as pa... After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash. This crash is believed to be unexploitable. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5. Scope: local sid: resolved (fixed in 96.0-1)

CVE-2022-36318 [MEDIUM] CVE-2022-36318: firefox - When visiting directory listings for `chrome://` URLs as source text, some param... When visiting directory listings for `chrome://` URLs as source text, some parameters were reflected. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12. Scope: local sid: resolved (fixed in 103.0-1)

CVE-2022-28283 [MEDIUM] CVE-2022-28283: firefox - The sourceMapURL feature in devtools was missing security checks that would have... The sourceMapURL feature in devtools was missing security checks that would have allowed a webpage to attempt to include local files or other files that should have been inaccessible. This vulnerability affects Firefox < 99. Scope: local sid: resolved (fixed in 99.0-1)

CVE-2022-36314 [MEDIUM] CVE-2022-36314: firefox - When opening a Windows shortcut from the local filesystem, an attacker could sup... When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system.This bug only affects Firefox for Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 102.1, Firefox < 103, and Thunderbird < 102.1. Scope: local sid: reso

CVE-2022-22736 [HIGH] CVE-2022-22736: firefox - If Firefox was installed to a world-writable directory, a local privilege escala... If Firefox was installed to a world-writable directory, a local privilege escalation could occur when Firefox searched the current directory for system libraries. However the install directory is not world-writable by default.*This bug only affects Firefox for Windows in a non-default installation. Other operating systems are unaffected.*. This vulnerability affects

CVE-2022-22758 [HIGH] CVE-2022-22758: firefox - When clicking on a tel: link, USSD codes, specified after a <code>\*</code> char... When clicking on a tel: link, USSD codes, specified after a \* character, would be included in the phone number. On certain phones, or on certain carriers, if the number was dialed this could perform actions on a user's account, similar to a cross-site request forgery attack.*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This v

CVE-2022-22762 [MEDIUM] CVE-2022-22762: firefox - Under certain circumstances, a JavaScript alert (or prompt) could have been show... Under certain circumstances, a JavaScript alert (or prompt) could have been shown while another website was displayed underneath it. This could have been abused to trick the user. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 97. Scope: local sid: resolved

CVE-2022-40961 [MEDIUM] CVE-2022-40961: firefox - During startup, a graphics driver with an unexpected name could lead to a stack-... During startup, a graphics driver with an unexpected name could lead to a stack-buffer overflow causing a potentially exploitable crash.*This issue only affects Firefox for Android. Other operating systems are not affected.*. This vulnerability affects Firefox < 105. Scope: local sid: resolved

CVE-2022-29910 [MEDIUM] CVE-2022-29910: firefox - When closed or sent to the background, Firefox for Android would not properly re... When closed or sent to the background, Firefox for Android would not properly record and persist HSTS settings.*Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 100. Scope: local sid: resolved

CVE-2022-1887 [CRITICAL] CVE-2022-1887: firefox - The search term could have been specified externally to trigger SQL injection. T... The search term could have been specified externally to trigger SQL injection. This vulnerability affects Firefox for iOS < 101. Scope: local sid: resolved

CVE-2022-22749 [MEDIUM] CVE-2022-22749: firefox - When scanning QR codes, Firefox for Android would have allowed navigation to som... When scanning QR codes, Firefox for Android would have allowed navigation to some URLs that do not point to web content.*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 96. Scope: local sid: resolved

CVE-2022-22753 [HIGH] CVE-2022-22753: firefox - A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service tha... A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused to grant Users write access to an arbitrary directory. This could have been used to escalate to SYSTEM access.*This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 97, Thunderbird < 91.6, and Firefox ES

CVE-2022-42931 [LOW] CVE-2022-42931: firefox - Logins saved by Firefox should be managed by the Password Manager component whic... Logins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk. Instead, the username (not password) was saved by the Form Manager to an unencrypted file on disk. This vulnerability affects Firefox < 106. Scope: local sid: resolved (fixed in 106.0-1)

CVE-2022-38474 [MEDIUM] CVE-2022-38474: firefox - A website that had permission to access the microphone could record audio withou... A website that had permission to access the microphone could record audio without the audio notification being shown. This bug does not allow the attacker to bypass the permission prompt - it only affects the notification shown once permission has been granted.*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability

CVE-2022-31746 [MEDIUM] CVE-2022-31746: firefox - Internal URLs are protected by a secret UUID key, which could have been leaked t... Internal URLs are protected by a secret UUID key, which could have been leaked to web page through the Referrer header. This vulnerability affects Firefox for iOS < 102. Scope: local sid: resolved

CVE-2022-46875 [MEDIUM] CVE-2022-46875: firefox - The executable file warning was not presented when downloading .atloc and .ftplo... The executable file warning was not presented when downloading .atloc and .ftploc files, which can run commands on a user's computer. *Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox < 108, Firefox ESR < 102.6, and Thunderbird < 102.6. Scope: local sid: resolved

CVE-2022-45413 [MEDIUM] CVE-2022-45413: firefox - Using the <code>S.browser_fallback_url parameter</code> parameter, an attacker c... Using the S.browser_fallback_url parameter parameter, an attacker could redirect a user to a URL and cause SameSite=Strict cookies to be sent.*This issue only affects Firefox for Android. Other operating systems are not affected.*. This vulnerability affects Firefox < 107. Scope: local sid: resolved

CVE-2022-22744 [HIGH] CVE-2022-22744: firefox - The constructed curl command from the "Copy as curl" feature in DevTools was not... The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. This could have lead to command injection if pasted into a Powershell prompt.*This bug only affects Thunderbird for Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5. Sc