Bug 2186108 (CVE-2023-29545) - CVE-2023-29545 Mozilla: Windows Save As dialog resolved environment variables
Summary: CVE-2023-29545 Mozilla: Windows Save As dialog resolved environment variables
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2023-29545
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: 2183233
TreeView+ depends on / blocked
 
Reported: 2023-04-12 06:24 UTC by Dhananjay Arunesh
Modified: 2023-04-28 09:42 UTC (History)
5 users (show)

Fixed In Version: firefox 102.10, thunderbird 102.10
Doc Type: ---
Doc Text:
The Mozilla Foundation Security Advisory describes this flaw as: Similar to CVE-2023-28163, this time when choosing 'Save Link As', suggested filenames containing environment variable names would have resolved those in the context of the current user. *This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.*
Clone Of:
Environment:
Last Closed: 2023-04-12 13:37:05 UTC
Embargoed:


Attachments (Terms of Use)

Description Dhananjay Arunesh 2023-04-12 06:24:17 UTC
Similar to CVE-2023-28163, this time when choosing 'Save Link As', suggested filenames containing environment variable names would have resolved those in the context of the current user. 

*This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.*

External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-14/#CVE-2023-29545

Comment 1 Product Security DevOps Team 2023-04-12 13:37:03 UTC
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2023-29545


Note You need to log in before you can comment on or make changes to this bug.