Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 877773 (CVE-2022-42930, CVE-2022-42931) - <www-client/firefox{-bin,}-{102.4.0,106.0}: multiple vulnerabilities
Summary: <www-client/firefox{-bin,}-{102.4.0,106.0}: multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2022-42930, CVE-2022-42931
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa+]
Keywords:
Depends on: 877805
Blocks: CVE-2022-42927, CVE-2022-42928, CVE-2022-42929, CVE-2022-42932
  Show dependency tree
 
Reported: 2022-10-20 17:46 UTC by John Helmert III
Modified: 2022-10-31 20:02 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Larry the Git Cow gentoo-dev 2022-10-25 11:35:50 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=cc0ce1b48a008f73ec9105b7ced559062a5ad613

commit cc0ce1b48a008f73ec9105b7ced559062a5ad613
Author:     Joonas Niilola <juippis@gentoo.org>
AuthorDate: 2022-10-25 11:35:30 +0000
Commit:     Joonas Niilola <juippis@gentoo.org>
CommitDate: 2022-10-25 11:35:47 +0000

    www-client/firefox: drop 102.3.0, 105.0.2, 106.0
    
    Bug: https://bugs.gentoo.org/877773
    Signed-off-by: Joonas Niilola <juippis@gentoo.org>

 www-client/firefox/Manifest               |  297 -------
 www-client/firefox/firefox-102.3.0.ebuild | 1266 ---------------------------
 www-client/firefox/firefox-105.0.2.ebuild | 1323 -----------------------------
 www-client/firefox/firefox-106.0.ebuild   | 1321 ----------------------------
 4 files changed, 4207 deletions(-)
Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-10-25 21:36:07 UTC 
Thanks!
Comment 3 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-10-31 15:49:27 UTC 
GLSA request filed
Comment 4 Larry the Git Cow gentoo-dev 2022-10-31 20:01:56 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=9769eb5d5b659339ccd728b1e78cd503bed0b83c

commit 9769eb5d5b659339ccd728b1e78cd503bed0b83c
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2022-10-31 19:59:57 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-10-31 20:01:43 +0000

    [ GLSA 202210-34 ] Mozilla Firefox: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/877773
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 glsa-202210-34.xml | 76 ++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 76 insertions(+)
Comment 5 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-10-31 20:02:31 UTC 
GLSA released, all done!