Advisories ยป MGASA-2022-0207

Updated firefox/thunderbird packages fix security vulnerability

Publication date: 25 May 2022
Modification date: 25 May 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-1802 , CVE-2022-1529

Description

Prototype pollution in Top-Level Await implementation. (CVE-2022-1802)

Untrusted input used in JavaScript object indexing, leading to prototype
pollution. (CVE-2022-1529)
                

References

SRPMS

8/core