Alert GCSA-23123 - Aggiornamento di sicurezza per prodotti Mozilla
******************************************************************
Alert ID: GCSA-23123
Data: 28 Settembre 2023
Titolo: Aggiornamento di sicurezza per prodotti Mozilla
******************************************************************
:: Descrizione del problema
Mozilla ha rilasciato nuove versioni dei prodotti Thunderbird, Firefox e
Firefox ESR, con le quali risolve vulnerabilita' multiple.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software interessato
versioni precedenti alle seguenti:
Firefox 118
Firefox ESR 115.3
Thunderbird 115.3
::Impatto
Remote Code Execution
Denial of Service
:: Soluzioni
Aggiornare i software alle versioni piu' recenti:
Firefox 118
Firefox ESR 115.3
Thunderbird 115.3
https://support.mozilla.org/en-US/kb/update-firefox-latest-release
https://support.mozilla.org/it/kb/aggiornamento-di-thunderbird
https://www.mozilla.org/it/firefox/new/
https://www.mozilla.org/en-US/firefox/organizations/
https://www.mozilla.org/en-US/firefox/all/#product-desktop-release
https://www.mozilla.org/it/thunderbird/
https://www.thunderbird.net/en-US/thunderbird/all/
:: Riferimenti
Mozilla Foundation Security Advisory
https://www.mozilla.org/en-US/security/advisories/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-41/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-42/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-43/
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5168
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5169
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5170
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5171
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5172
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5173
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5174
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5175
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5176
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFlFSn9wZxMk2USYEIRCMOYAKDRoRdnXob4QjjWh7QF4DBEWjTeYACgtOkf
rfpCcc0eh6+NaBQMk5yLIPk=
=eXxb
-----END PGP SIGNATURE-----