Bug 2120673 (CVE-2022-38472) - CVE-2022-38472 Mozilla: Address bar spoofing via XSLT error handling
Summary: CVE-2022-38472 Mozilla: Address bar spoofing via XSLT error handling
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2022-38472
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: Red Hat2119731 Red Hat2119732 Red Hat2119733 Red Hat2119734 Red Hat2119735 Red Hat2119736 Red Hat2119737 Red Hat2119738 Red Hat2119739 Red Hat2119740 Red Hat2119745 Red Hat2119746 Red Hat2119747 Red Hat2119748 Red Hat2119749 Red Hat2119750 Red Hat2119751 Red Hat2119752 Red Hat2119753 Red Hat2119754
Blocks: Embargoed2119729
TreeView+ depends on / blocked
 
Reported: 2022-08-23 14:02 UTC by Mauro Matteo Cascella
Modified: 2022-09-02 20:25 UTC (History)
5 users (show)

Fixed In Version: firefox 91.13, firefox 102.2
Doc Type: ---
Doc Text:
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of an attacker abusing XSLT error handling to associate attacker-controlled content with another origin, which was displayed in the address bar. This issue could be used to fool the user into submitting data intended for the spoofed origin.
Clone Of:
Environment:
Last Closed: 2022-09-02 20:25:49 UTC

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2022:6164 0 None None None 2022-08-24 19:01:28 UTC
Red Hat Product Errata RHSA-2022:6165 0 None None None 2022-08-24 17:15:15 UTC
Red Hat Product Errata RHSA-2022:6166 0 None None None 2022-08-24 17:20:49 UTC
Red Hat Product Errata RHSA-2022:6167 0 None None None 2022-08-24 17:38:34 UTC
Red Hat Product Errata RHSA-2022:6168 0 None None None 2022-08-24 17:37:48 UTC
Red Hat Product Errata RHSA-2022:6169 0 None None None 2022-08-24 21:38:02 UTC
Red Hat Product Errata RHSA-2022:6174 0 None None None 2022-08-24 18:45:18 UTC
Red Hat Product Errata RHSA-2022:6175 0 None None None 2022-08-24 19:01:58 UTC
Red Hat Product Errata RHSA-2022:6176 0 None None None 2022-08-24 18:30:37 UTC
Red Hat Product Errata RHSA-2022:6177 0 None None None 2022-08-24 19:08:38 UTC
Red Hat Product Errata RHSA-2022:6178 0 None None None 2022-08-24 18:42:07 UTC
Red Hat Product Errata RHSA-2022:6179 0 None None None 2022-08-24 21:38:37 UTC

Description Mauro Matteo Cascella 2022-08-23 14:02:11 UTC 
An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin.

External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-34/#CVE-2022-38472
Comment 1 errata-xmlrpc 2022-08-24 17:15:13 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2022:6165 https://access.redhat.com/errata/RHSA-2022:6165
Comment 2 errata-xmlrpc 2022-08-24 17:20:47 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2022:6166 https://access.redhat.com/errata/RHSA-2022:6166
Comment 3 errata-xmlrpc 2022-08-24 17:37:46 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Extended Update Support

Via RHSA-2022:6168 https://access.redhat.com/errata/RHSA-2022:6168
Comment 4 errata-xmlrpc 2022-08-24 17:38:33 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions

Via RHSA-2022:6167 https://access.redhat.com/errata/RHSA-2022:6167
Comment 5 errata-xmlrpc 2022-08-24 18:30:35 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2022:6176 https://access.redhat.com/errata/RHSA-2022:6176
Comment 6 errata-xmlrpc 2022-08-24 18:42:06 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions

Via RHSA-2022:6178 https://access.redhat.com/errata/RHSA-2022:6178
Comment 7 errata-xmlrpc 2022-08-24 18:45:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2022:6174 https://access.redhat.com/errata/RHSA-2022:6174
Comment 8 errata-xmlrpc 2022-08-24 19:01:26 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2022:6164 https://access.redhat.com/errata/RHSA-2022:6164
Comment 9 errata-xmlrpc 2022-08-24 19:01:57 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2022:6175 https://access.redhat.com/errata/RHSA-2022:6175
Comment 10 errata-xmlrpc 2022-08-24 19:08:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Extended Update Support

Via RHSA-2022:6177 https://access.redhat.com/errata/RHSA-2022:6177
Comment 11 errata-xmlrpc 2022-08-24 21:38:01 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2022:6169 https://access.redhat.com/errata/RHSA-2022:6169
Comment 12 errata-xmlrpc 2022-08-24 21:38:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2022:6179 https://access.redhat.com/errata/RHSA-2022:6179
Comment 13 Product Security DevOps Team 2022-09-02 20:25:46 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-38472
Note You need to log in before you can comment on or make changes to this bug.