USN-7056-1: Firefox vulnerabilities

Read Time:42 Second

Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information across domains, or execute arbitrary code. (CVE-2024-9392,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400,
CVE-2024-9401, CVE-2024-9402, CVE-2024-9403)

Masato Kinugawa discovered that Firefox did not properly validate
javascript under the “resource://pdf.js” origin. An attacker could
potentially exploit this issue to execute arbitrary javascript code and
access cross-origin PDF content. (CVE-2024-9393)

Masato Kinugawa discovered that Firefox did not properly validate
javascript under the “resource://devtools” origin. An attacker could
potentially exploit this issue to execute arbitrary javascript code and
access cross-origin JSON content. (CVE-2024-9394)

Largest Recorded DDoS Attack is 3.8 Tbps

Reducing Alert Fatigue by Streamlining SOC Processes

Fraud Repayment Rules Could Leave Victims Struggling – Non-Profit

Get Safe Online Launches New Scam Detector

Friday Squid Blogging: Map of All Colossal Squid Sightings

How Confidence Between Teams Impacts Cyber Incident Outcomes

New MedusaLocker Ransomware Variant Deployed by Threat Actor

Sellafield Fined for Cybersecurity Failures at Nuclear Site

Sellafield nuclear site hit with £332,500 fine after “significant cybersecurity shortfalls”

USN-7056-1: Firefox vulnerabilities

USN-7043-3: cups-filters vulnerability

USN-7041-3: CUPS vulnerability

webkit2gtk4.0-2.46.1-2.fc40

webkit2gtk4.0-2.46.1-2.fc41

DSA-5785-1 mediawiki – security update

DSA-5786-1 libgsf – security update