{ "schema_version": "1.7.0", "id": "RHSA-2024:1491", "related": [], "upstream": [ "CVE-2023-5388", "CVE-2024-0743", "CVE-2024-2607", "CVE-2024-2608", "CVE-2024-2610", "CVE-2024-2611", "CVE-2024-2612", "CVE-2024-2614", "CVE-2024-2616", "CVE-2024-29944" ], "published": "2024-09-16T18:29:10Z", "modified": "2026-01-05T10:05:53Z", "summary": "Red Hat Security Advisory: firefox security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "affected": [ { "package": { "name": "firefox", "ecosystem": "Red Hat:rhel_aus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debuginfo", "ecosystem": "Red Hat:rhel_aus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debugsource", "ecosystem": "Red Hat:rhel_aus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox", "ecosystem": "Red Hat:rhel_e4s:8.4::appstream", "purl": "pkg:rpm/redhat/firefox" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debuginfo", "ecosystem": "Red Hat:rhel_e4s:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debugsource", "ecosystem": "Red Hat:rhel_e4s:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox", "ecosystem": "Red Hat:rhel_tus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debuginfo", "ecosystem": "Red Hat:rhel_tus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "firefox-debugsource", "ecosystem": "Red Hat:rhel_tus:8.4::appstream", "purl": "pkg:rpm/redhat/firefox-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:115.9.1-1.el8_4" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2024:1491" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243644" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260012" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270660" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270661" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270662" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270663" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270664" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270665" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270666" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271064" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1491.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-5388" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-5388" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5388" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2023-5388" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2023-5388" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-0743" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-0743" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0743" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-0743" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-0743" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2607" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2607" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2607" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2607" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2607" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2608" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2608" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2608" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2608" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2608" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2610" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2610" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2610" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2610" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2610" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2611" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2611" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2611" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2611" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2611" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2612" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2612" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2612" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2612" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2612" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2614" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2614" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2614" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2614" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2614" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-2616" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-2616" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2616" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2024-2616" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2024-2616" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-29944" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-29944" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29944" }, { "type": "ARTICLE", "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-16/#CVE-2024-29944" } ] }