SUSE-SU-2023:3898-1

Advisory lineage Upstream: 5 Downstream: 0
Published: 29 Sept 2023, 09:26
Last modified:04 Feb 2026, 03:54

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

29 Sept 2023, 09:26
Published
Vulnerability first disclosed
04 Feb 2026, 03:54
Last Modified
Vulnerability information updated

Description

Security update for MozillaFirefox This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 115.3.0 ESR (MFSA 2023-42, bsc#1215575): Security fixes: - CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1 (bmo#1846683). - CVE-2023-5169: Out-of-bounds write in PathOps (bmo#1846685). - CVE-2023-5171: Use-after-free in Ion Compiler (bmo#1851599). - CVE-2023-5174: Double-free in process spawning on Windows (bmo#1848454). - CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3 (bmo#1836353, bmo#1842674, bmo#1843824, bmo#1843962, bmo#1848890, bmo#1850180, bmo#1850983, bmo#1851195). Other fixes: - Fix broken build with newer binutils (bsc#1215309)

Affected Systems

  • opensuseMozillaFirefox&distro=openSUSE Leap 15.4

    < 115.3.0-150200.152.108.1

  • opensuseMozillaFirefox&distro=openSUSE Leap 15.5

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Enterprise Storage 7.1

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP4

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP5

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 115.3.0-150200.152.108.1

  • suseMozillaFirefox&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3

    < 115.3.0-150200.152.108.1

References (8)