Ukukhishwa kokulungisa kweFirefox 97.0.2 kanye ne-91.6.1 kuyatholakala, kulungiswa ubungozi obubili obukalwe njengezinkinga ezibucayi. Ubungozi bukuvumela ukuthi udlule ukuhlukaniswa kwe-sandbox futhi uzuze ukusetshenziswa kwekhodi yakho ngamalungelo esiphequluli lapho ucubungula okuqukethwe okuklanywe ngokukhethekile. Kuthiwa kuzona zombili lezi zinkinga sekuhlonzwe ukuthi kukhona okusebenzayo okuvele kusetshenziselwa ukuhlasela.
Imininingwane ayikadalulwa, kwaziwa kuphela ukuthi ukuba sengozini kokuqala (CVE-2022-26485) kuhlotshaniswa nokufinyelela endaweni yenkumbulo esivele ikhululiwe (Sebenzisa-ngemuva kwamahhala) kukhodi yokucubungula ipharamitha ye-XSLT, neyesibili. (CVE-2022-26486) ngokufinyelela kumemori esivele ikhululiwe kuhlaka lweWebGPU IPC.
Bonke abasebenzisi beziphequluli ezisekelwe enjini yeFirefox bayanconywa ukuthi bafake izibuyekezo ngokushesha. Abasebenzisi be-Tor Browser abasuselwe egatsheni le-ESR le-Firefox 91 kufanele baqaphele ikakhulukazi lapho befaka izibuyekezo, njengoba ubungozi abuholeli nje kuphela ekwehleni uhlelo, kodwa futhi nasekukhipheni igama lomsebenzisi. Isibuyekezo esisusa ubungozi okukhulunywa ngaso asikenzelwa iSiphequluli Se-Tor.
Source: opennet.ru