Firefox 102 Patches 19 Vulnerabilities, Improves Privacy By Orbit Brain June 29, 2022 0 213 views Dwelling › VulnerabilitiesFirefox 102 Patches 19 Vulnerabilities, Improves PrivatenessBy Ionut Arghire on June 29, 2022TweetMozilla this week introduced the provision of Firefox 102 within the steady channel with patches for 19 vulnerabilities, together with 4 high-severity bugs.With the newest replace, Mozilla has patched CVE-2022-34470, a high-severity use-after-free difficulty in nsSHistory that was triggered when navigating between XML paperwork, and which might result in a doubtlessly exploitable crash.Use-after-free vulnerabilities will be exploited to attain arbitrary code execution, information corruption, or denial of service, and will result in full system compromise if mixed with different flaws. Malicious web sites can exploit these bugs to flee a browser’s sandbox.CVE-2022-34468, one other high-severity flaw addressed in Firefox 102, might permit for the bypass of a CSP sandbox header with out `allow-scripts` by utilizing a retargeted javascript: URI. Due to this difficulty, when a person clicks on a javascript: hyperlink, an iframe might run scripts with out authorization.The brand new Firefox launch additionally resolves CVE-2022-34479, a Linux-specific difficulty that permits malicious web sites to create popup home windows that may be resized in such a way that the deal with bar can be overlayed with net content material, doubtlessly resulting in spoofing assaults.A number of reminiscence security bugs have been assigned CVE-2022-34484, together with ones that “confirmed proof of JavaScript prototype or reminiscence corruption and we presume that with sufficient effort a few of these might have been exploited to run arbitrary code.”Firefox 102 additionally improves person privateness by mitigating question parameter monitoring when navigating the web with Enhanced Monitoring Safety (ETP) strict mode enabled.With ETP, Firefox confines cookies to the websites that created them, which prevents cross-site monitoring. Courtesy of the brand new functionality, Firefox can block particular monitoring parameters that web sites could also be utilizing to avoid the privateness protections that browsers have carried out.Moreover, Firefox 102 handles audio decoding in a separate course of that options stricter sandboxing, to reinforce course of isolation.Associated: Emergency Firefox Replace Patches Two Actively Exploited Zero-Day VulnerabilitiesAssociated: New Firefox Characteristic Ups the Ante Towards Cookie-Primarily based MonitoringAssociated: Google Patches 14 Vulnerabilities With Launch of Chrome 103Get the Every day Briefing Most LatestMost LearnAzure Service Material Vulnerability Can Result in Cluster TakeoverSecuring the Metaverse and Web3Firefox 102 Patches 19 Vulnerabilities, Improves PrivatenessCISA Requires Expedited Adoption of Fashionable Authentication Forward of DeadlineMITRE Publishes 2022 Record of 25 Most Harmful VulnerabilitiesCISA-Funded Undertaking Allows College students With Disabilities to Be taught CybersecurityNormalyze Pronounces $22 Million for DSPM Know-howGoogle Introduces New Capabilities for Cloud Armor Net Safety ServiceCISA Says ‘PwnKit’ Linux Vulnerability Exploited in AssaultsCyolo Banks $60M Sequence B for ZTNA Know-howOn the lookout for Malware in All of the Improper Locations?First Step For The Web’s subsequent 25 years: Including Safety to the DNSTattle Story: What Your Pc Says About YouBe in a Place to Act By Cyber Situational ConsciousnessReport Exhibits Closely Regulated Industries Letting Social Networking Apps Run Rampant2010, A Nice 12 months To Be a Scammer.Do not Let DNS be Your Single Level of FailureThe best way to Determine Malware in a BlinkDefining and Debating Cyber WarfareThe 5 A’s that Make Cybercrime so EngagingThe best way to Defend Towards DDoS AssaultsSafety Budgets Not in Line with ThreatsAnycast – Three Causes Why Your DNS Community Ought to Use ItThe Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering OrganizationsUtilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous EnterpriseShare this:FacebookXPrintEmailLinkedInRedditTwitterTumblrPinterestTelegramWhatsApp browser Firefox Mozilla patch privacy tracking update vulnerability Orbit Brainhttps://orbitbrain.com/ Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy waysand much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.
Google Blocks Record-Setting DDoS Attack That Peaked at 46 Million RPSIntroducing the Cyber Security News Google Blocks Record-Setting DDoS Attack That Peaked at 46 Million RPS.... August 20, 2022 Cyber Security News
Critical Infrastructure Operators Implementing Zero Trust in OT EnvironmentsIntroducing the Cyber Security News Critical Infrastructure Operators Implementing Zero Trust in OT Environments.... July 15, 2022 Cyber Security News
New ‘RisePro’ Infostealer Increasingly Popular Among CybercriminalsIntroducing the Cyber Security News New ‘RisePro’ Infostealer Increasingly Popular Among Cybercriminals.... December 20, 2022 Cyber Security News
Several Code Execution Vulnerabilities Patched in Sophos FirewallIntroducing the Cyber Security News Several Code Execution Vulnerabilities Patched in Sophos Firewall.... December 6, 2022 Cyber Security News
Malicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft ProtectionsIntroducing the Cyber Security News Malicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft Protections.... July 30, 2022 Cyber Security News
Patch Tuesday: Critical Flaws in ColdFusion, Adobe CommerceIntroducing the Cyber Security News Patch Tuesday: Critical Flaws in ColdFusion, Adobe Commerce.... October 11, 2022 Cyber Security News
Pantera Capital Plans $250M Solana (SOL) Buy, Analyst Predicts Record Rally Toward $1000March 8, 2024 72