Alert GCSA-23108 - Aggiornamento di sicurezza per prodotti Mozilla

 




















******************************************************************

Alert ID: GCSA-23108
Data: 30 Agosto 2023
Titolo: Aggiornamento di sicurezza per prodotti Mozilla

******************************************************************

:: Descrizione del problema

Mozilla ha rilasciato nuove versioni dei prodotti Firefox e
Firefox ESR, con le quali risolve vulnerabilita' multiple.

Maggiori informazioni sono disponibili alla sezione "Riferimenti".


:: Software interessato

versioni precedenti alle seguenti:

Firefox 117
Firefox ESR 102.15
Firefox ESR 115.2


::Impatto

Remote Code Execution
Security Restriction Bypass
Denial of Service
Spoofing
Information Disclosure


:: Soluzioni

Aggiornare Firefox alla versione piu' recente:

Firefox 117
Firefox ESR 102.15
Firefox ESR 115.2

https://support.mozilla.org/en-US/kb/update-firefox-latest-release
https://www.mozilla.org/it/firefox/new/
https://www.mozilla.org/en-US/firefox/organizations/
https://www.mozilla.org/en-US/firefox/all/#product-desktop-release


:: Riferimenti

Mozilla Foundation Security Advisory
https://www.mozilla.org/en-US/security/advisories/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-34/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-35/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-36/


Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4051
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4573
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4574
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4575
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4576
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4577
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4578
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4579
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4580
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4581
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4582
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4583
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4584
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4585



GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----

iD8DBQFk7wCYwZxMk2USYEIRCIi4AKDT4pbQNhzPqcS7jaTb4YfShmFZLwCg4DXF
ctq1U2jTE7pi5PNNzkQDYzE=
=nmTL
-----END PGP SIGNATURE-----