Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 832992 (CVE-2022-0511, CVE-2022-22753, CVE-2022-22755, CVE-2022-22757, CVE-2022-22758, CVE-2022-22762) - <www-client/firefox{,-bin}-{91.6.0,97.0}: multiple vulnerabilities
Summary: <www-client/firefox{,-bin}-{91.6.0,97.0}: multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2022-0511, CVE-2022-22753, CVE-2022-22755, CVE-2022-22757, CVE-2022-22758, CVE-2022-22762
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa]
Keywords:
Depends on: 833048
Blocks: CVE-2022-22754, CVE-2022-22756, CVE-2022-22759, CVE-2022-22760, CVE-2022-22761, CVE-2022-22763, CVE-2022-22764
  Show dependency tree
 
Reported: 2022-02-09 16:00 UTC by John Helmert III
Modified: 2022-02-21 23:05 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-02-12 17:30:43 UTC 
Please cleanup.
Comment 2 Larry the Git Cow gentoo-dev 2022-02-13 06:57:15 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a87c4ade0a4d6633fa3cef5141fbcd1c1b5f1319

commit a87c4ade0a4d6633fa3cef5141fbcd1c1b5f1319
Author:     Joonas Niilola <juippis@gentoo.org>
AuthorDate: 2022-02-13 06:56:26 +0000
Commit:     Joonas Niilola <juippis@gentoo.org>
CommitDate: 2022-02-13 06:56:26 +0000

    www-client/firefox: drop 91.5.0, 91.5.1, 96.0.3 (security cleanup)
    
    Bug: https://bugs.gentoo.org/832992
    Signed-off-by: Joonas Niilola <juippis@gentoo.org>

 www-client/firefox/Manifest              |  296 -------
 www-client/firefox/firefox-91.5.0.ebuild | 1235 -----------------------------
 www-client/firefox/firefox-91.5.1.ebuild | 1238 -----------------------------
 www-client/firefox/firefox-96.0.3.ebuild | 1242 ------------------------------
 4 files changed, 4011 deletions(-)
Comment 3 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-02-13 16:48:31 UTC 
Thanks!
Comment 4 Larry the Git Cow gentoo-dev 2022-02-21 23:03:21 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=57effa1a78ecfa61900fdedbc9401d0948141e99

commit 57effa1a78ecfa61900fdedbc9401d0948141e99
Author:     John Helmert III <ajak@gentoo.org>
AuthorDate: 2022-02-21 22:59:29 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-02-21 22:59:29 +0000

    [ GLSA 202202-03 ] Mozilla Firefox: Multiple vulnerabilities
    
    Bug: https://bugs.gentoo.org/802768
    Bug: https://bugs.gentoo.org/807947
    Bug: https://bugs.gentoo.org/813498
    Bug: https://bugs.gentoo.org/821385
    Bug: https://bugs.gentoo.org/828538
    Bug: https://bugs.gentoo.org/831039
    Bug: https://bugs.gentoo.org/832992
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 glsa-202202-03.xml | 141 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 141 insertions(+)
Comment 5 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-02-21 23:05:40 UTC 
GLSA released, all done!