Alert GCSA-22120 - Aggiornamento di sicurezza per Mozilla Firefox
******************************************************************
Alert ID: GCSA-22120
Data: 21 Ottobre 2022
Titolo: Aggiornamento di sicurezza per Mozilla Firefox
******************************************************************
:: Descrizione del problema
Mozilla ha rilasciato una nuova versione del browser Firefox
con la quale risolve varie vulnerabilita', alcune delle quali di livello
elevato.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
Firefox versioni precedenti alla 106
Firefox ESR versioni precedenti alla 102.4
:: Impatto
Denial of Service (DoS)
Esecuzione remota di codice arbitrario (RCE)
Accesso a dati riservati (ID)
:: Soluzioni
Aggiornare Firefox all'ultima versione
Firefox 106
Firefox ESR 102.4
https://support.mozilla.org/en-US/kb/update-firefox-latest-release
https://www.mozilla.org/it/firefox/new/
https://www.mozilla.org/en-US/firefox/organizations/
https://www.mozilla.org/en-US/firefox/all/#product-desktop-release
:: Riferimenti
Mozilla Foundation Security Advisory
https://www.mozilla.org/en-US/security/advisories/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-44
https://www.mozilla.org/en-US/security/advisories/mfsa2022-45
Firefox - Release Notes
https://www.mozilla.org/en-US/firefox/106.0/releasenotes/
https://www.mozilla.org/en-US/firefox/102.4.0/releasenotes/
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42927
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42932
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFjUkIKwZxMk2USYEIRCKMaAJ9u0hCKXXIaad/AsgIlRII/kfXMmQCeLJ1n
f1CTLu1n1m47hr4R7peuceM=
=bn5P
-----END PGP SIGNATURE-----
Alert ID: GCSA-22120
Data: 21 Ottobre 2022
Titolo: Aggiornamento di sicurezza per Mozilla Firefox
******************************************************************
:: Descrizione del problema
Mozilla ha rilasciato una nuova versione del browser Firefox
con la quale risolve varie vulnerabilita', alcune delle quali di livello
elevato.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
Firefox versioni precedenti alla 106
Firefox ESR versioni precedenti alla 102.4
:: Impatto
Denial of Service (DoS)
Esecuzione remota di codice arbitrario (RCE)
Accesso a dati riservati (ID)
:: Soluzioni
Aggiornare Firefox all'ultima versione
Firefox 106
Firefox ESR 102.4
https://support.mozilla.org/en-US/kb/update-firefox-latest-release
https://www.mozilla.org/it/firefox/new/
https://www.mozilla.org/en-US/firefox/organizations/
https://www.mozilla.org/en-US/firefox/all/#product-desktop-release
:: Riferimenti
Mozilla Foundation Security Advisory
https://www.mozilla.org/en-US/security/advisories/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-44
https://www.mozilla.org/en-US/security/advisories/mfsa2022-45
Firefox - Release Notes
https://www.mozilla.org/en-US/firefox/106.0/releasenotes/
https://www.mozilla.org/en-US/firefox/102.4.0/releasenotes/
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42927
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42932
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFjUkIKwZxMk2USYEIRCKMaAJ9u0hCKXXIaad/AsgIlRII/kfXMmQCeLJ1n
f1CTLu1n1m47hr4R7peuceM=
=bn5P
-----END PGP SIGNATURE-----