firefox-115.9.1esr

[Douglas R. Reno]

New point version

Contains a fix for...

CVE-2024-29944: Privileged JavaScript Execution via Event Handlers

Reporter

Manfred Paul via Trend Micro's Zero Day Initiative

Impact

critical

Description

An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox.

[ken@…]

For me, the links to release notes for 115.9.1 and 124.0.1 (same CVE) currently 404, I suspect they will eventually roll out to all their estate. Awaiting analysis at NVD.

[ken@…]

Found it by searching directly for firefox 115.9.1 release ​https://www.mozilla.org/en-US/security/advisories/mfsa2024-16/

[ken@…]

Fixed in sha:8f30526ca3b2

Subsequent post-push cleanup of changelog in r12.1-220 In my local repo that is

commit bf3b047f3659fe8f0476cf9ad0c657dcf8ae9ae3 (HEAD -> trunk, origin/trunk, origin/HEAD) Author: Ken Moffat <zarniwhoop@…> Date: Sat Mar 23 00:12:38 2024 +0000

Merge entries for 22nd in changelog.

but trac cannot find that commit. Strange.

Security Advisory SA-12.1-012 issued.

[Douglas R. Reno]

Replying to ken@…:

Fixed in sha:8f30526ca3b2

Subsequent post-push cleanup of changelog in r12.1-220 In my local repo that is

commit bf3b047f3659fe8f0476cf9ad0c657dcf8ae9ae3 (HEAD -> trunk, origin/trunk, origin/HEAD) Author: Ken Moffat <zarniwhoop@…> Date: Sat Mar 23 00:12:38 2024 +0000

Merge entries for 22nd in changelog.

but trac cannot find that commit. Strange.

Security Advisory SA-12.1-012 issued.

Hi Ken,

I'm looking on the website and I can't see SA-12.1-012, and running 'git pull' over here shows no commits since my Thunderbird advisory (011)

Can you push it when you have a second? I'll then work on my two SAs afterwards

[ken@…]

Merda, did not see this. Came back to close the ticket after deciding that in this case the rebase had changed the hash.

Changing the advisory to sa-12.1-013.