This bug was fixed in the package mozjs102 - 102.11.0-1
---------------
mozjs102 (102.11.0-1) unstable; urgency=high
* New upstream release (LP: #2018905)
- CVE-2023-32205: Browser prompts could have been obscured by popups
- CVE-2023-32206: Crash in RLBox Expat driver
- CVE-2023-32207: Potential permissions request bypass via clickjacking
- CVE-2023-32211: Content process crash due to invalid wasm code
- CVE-2023-32212: Potential spoof due to obscured address bar
- CVE-2023-32213: Potential memory corruption in FileReader::DoReadData()
- CVE-2023-32214: Potential DoS via exposed protocol handlers
- CVE-2023-32215: Memory safety bugs
-- Jeremy Bícha <[email protected]> Mon, 08 May 2023 11:59:12 -0400
** Changed in: mozjs102 (Ubuntu)
Status: Incomplete => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32205
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32206
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32207
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32212
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32213
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32214
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to mozjs102 in Ubuntu.
https://bugs.launchpad.net/bugs/2018905
Title:
Update mozjs102 to 102.11.0
Status in mozjs102 package in Ubuntu:
Fix Released
Status in mozjs102 source package in Jammy:
Incomplete
Status in mozjs102 source package in Kinetic:
Incomplete
Status in mozjs102 source package in Lunar:
Incomplete
Bug description:
Impact
------
mozjs102 is the SpiderMonkey JavaScript engine from Firefox ESR. It is used
by gjs to power GNOME Shell and some GNOME apps.
There are new Firefox 102 ESR releases monthly until the end of August.
https://whattrainisitnow.com/calendar/
This bug tracks updating Ubuntu 23.04 from 102.10.0 to 102.11.0,
Ubuntu 22.10 from 102.3.0 to 102.11.0,
and backporting this package to Ubuntu 22.04 LTS.
Security Impact
---------------
I looked through
https://github.com/mozilla/gecko-dev/commits/esr102/js
and searched for referenced bug numbers in
https://www.mozilla.org/en-US/security/advisories/mfsa2023-17/
and found two CVEs for Ubuntu 23.04
Ubuntu 22.10 wasn't updated recently, so I listed 7 more CVEs there.
Also, note that there are 4 more CVEs from 102.6.0-0ubuntu0.22.10.1 which was
only pushed to -proposed and not to -security. (We ran into an issue with
updating gjs for Ubuntu 22.04 LTS but that doesn't need to block updating
mozjs102 by itself.)
Test Case
---------
https://wiki.ubuntu.com/DesktopTeam/TestPlans/gjs
Security Sponsoring
-------------------
sudo apt install git-buildpackage
mkdir ../tarballs; cd ../tarballs
pull-lp-source mozjs102 kinetic
# That avoids needing to recreate the original tarball from pristine-tar
which takes a while. Also, running lintian takes a while.
cd ..
gbp clone https://salsa.debian.org/gnome-team/mozjs
cd mozjs
git checkout ubuntu/102/lunar
gbp buildpackage --git-builder="debuild --no-lintian -S -nc"
--git-tarball-dir=../tarballs
git checkout ubuntu/102/kinetic
gbp buildpackage --git-builder="debuild --no-lintian -S -nc -v102.3.0-1"
--git-tarball-dir=../tarballs
git checkout ubuntu/102/jammy
gbp buildpackage --git-builder="debuild --no-lintian -S -nc"
--git-tarball-dir=../tarballs
Initial Testing Done
--------------------
I built the package locally.
I installed the library package on Ubuntu 23.04 and successfully completed
the Test Case.
Other Info
----------
I think it would be helpful to also push this update to Ubuntu 22.04 LTS even
though we don't have any packages there using mozjs102 yet, since it is still a
goal to update gjs there to use mozjs102. See LP: #1993214
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mozjs102/+bug/2018905/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
