What is the severity of RHSA-2023:3142?

The severity of RHSA-2023:3142 is classified as moderate.

How do I fix RHSA-2023:3142?

To fix RHSA-2023:3142, you should update Firefox to version 102.11.0-2.el9_0 or later.

What vulnerabilities does RHSA-2023:3142 address?

RHSA-2023:3142 addresses vulnerabilities including CVE-2023-32205, which affects browser prompt visibility.

Which versions of Firefox are affected by RHSA-2023:3142?

Affected versions include prior releases of Firefox that are below 102.11.0-2.el9_0.

Is there a need for additional security measures after applying RHSA-2023:3142?

Yes, it is recommended to follow up with routine security practices even after applying RHSA-2023:3142.

Vulnerability/
RHSA-2023:3142

16/5/2023

5/4/2025

RHSA-2023:3142: Important: firefox security update

First published: Tue May 16 2023(Updated: )

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.<br>This update upgrades Firefox to version 102.11.0 ESR.<br>Security Fix(es):<br><li> Mozilla: Browser prompts could have been obscured by popups (CVE-2023-32205)</li> <li> Mozilla: Crash in RLBox Expat driver (CVE-2023-32206)</li> <li> Mozilla: Potential permissions request bypass via clickjacking (CVE-2023-32207)</li> <li> Mozilla: Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11 (CVE-2023-32215)</li> <li> Mozilla: Content process crash due to invalid wasm code (CVE-2023-32211)</li> <li> Mozilla: Potential spoof due to obscured address bar (CVE-2023-32212)</li> <li> Mozilla: Potential memory corruption in FileReader::DoReadData() (CVE-2023-32213)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/firefox	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debuginfo	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debugsource	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debuginfo	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debugsource	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debuginfo	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox-debugsource	<102.11.0-2.el9_0	102.11.0-2.el9_0
redhat/firefox	<102.11.0-2.el9_0.aa	102.11.0-2.el9_0.aa
redhat/firefox-debuginfo	<102.11.0-2.el9_0.aa	102.11.0-2.el9_0.aa
redhat/firefox-debugsource	<102.11.0-2.el9_0.aa	102.11.0-2.el9_0.aa

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2023:3142 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2023:3142?
The severity of RHSA-2023:3142 is classified as moderate.
How do I fix RHSA-2023:3142?
To fix RHSA-2023:3142, you should update Firefox to version 102.11.0-2.el9_0 or later.
What vulnerabilities does RHSA-2023:3142 address?
RHSA-2023:3142 addresses vulnerabilities including CVE-2023-32205, which affects browser prompt visibility.
Which versions of Firefox are affected by RHSA-2023:3142?
Affected versions include prior releases of Firefox that are below 102.11.0-2.el9_0.
Is there a need for additional security measures after applying RHSA-2023:3142?
Yes, it is recommended to follow up with routine security practices even after applying RHSA-2023:3142.

agent/severity
agent/type
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/title
agent/description
agent/trending
agent/source
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2023:3142
agent/software-canonical-lookup
agent/references
agent/remedy
agent/tags
agent/event
package-manager/redhat