Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-28283

Published: 7 April 2022

The sourceMapURL feature in devtools was missing security checks that would have allowed a webpage to attempt to include local files or other files that should have been inaccessible. This vulnerability affects Firefox < 99.

Priority

Medium

CVSS 3 base score: 6.5

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
bionic
Released (99.0+build2-0ubuntu0.18.04.2)
focal
Released (99.0+build2-0ubuntu0.20.04.2)
impish
Released (99.0+build2-0ubuntu0.21.10.2)
jammy
Released (1:1snap1-0ubuntu1)
kinetic
Released (1:1snap1-0ubuntu1)
trusty Does not exist

upstream Needs triage

xenial Needs triage