Amazon Linux AMI 2: CVE-2023-25728: Security patch for firefox, thunderbird (Multiple Advisories)

发布于3月6日3月6日

Members

Amazon Linux AMI 2: CVE-2023-25728: Security patch for firefox, thunderbird (Multiple Advisories)

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:N/A:N)

Published

03/07/2023

Created

03/08/2023

Added

03/07/2023

Modified

01/30/2025

Description

The <code>Content-Security-Policy-Report-Only</code> header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe triggers a redirect. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.

Solution(s)

amazon-linux-ami-2-upgrade-firefox
amazon-linux-ami-2-upgrade-firefox-debuginfo
amazon-linux-ami-2-upgrade-thunderbird
amazon-linux-ami-2-upgrade-thunderbird-debuginfo

References

https://attackerkb.com/topics/cve-2023-25728
AL2/ALAS-2023-1983
AL2/ALASFIREFOX-2023-007
CVE - 2023-25728

查看数 700
已创建 3月6日3月6日
最后回复 3月6日3月6日

https://www.ishack.org/topic/9474.html/

粉丝

转到主题列表

登录

Amazon Linux AMI 2: CVE-2023-25728: Security patch for firefox, thunderbird (Multiple Advisories)

recommended_posts

Amazon Linux AMI 2: CVE-2023-25728: Security patch for firefox, thunderbird (Multiple Advisories)

Description

Solution(s)

References

欢迎来到红帽社区

社区动态

红龙逆向工具箱2025最新版(ISHACK改良版)

修改底部版权信息

ips4.7升级到5.x版本问题。

IPS Invision Community 经常自动退出登录解决

网站程序安装中文语言包时没有中文选项？Debian中文包

帐户

导航

搜索