CVE-2022-31738
Published: 1 June 2022
When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
Notes
| Author | Note |
|---|---|
| tyhicks | mozjs contains a copy of the SpiderMonkey JavaScript engine |
| mdeslaur | starting with Ubuntu 22.04, the firefox package is just a script that installs the Firefox snap |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
firefox Launchpad, Ubuntu, Debian |
bionic |
Released
(101.0.1+build1-0ubuntu0.18.04.1)
|
| focal |
Released
(101.0.1+build1-0ubuntu0.20.04.1)
|
|
| impish |
Released
(101.0.1+build1-0ubuntu0.21.10.1)
|
|
| jammy |
Not vulnerable
(code not present)
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(101)
|
|
| xenial |
Ignored
(end of standard support)
|
|
| kinetic |
Not vulnerable
(code not present)
|
|
| lunar |
Not vulnerable
(code not present)
|
|
|
firefox-esr Launchpad, Ubuntu, Debian |
upstream |
Released
(91.10.0esr-1)
|
|
mozjs38 Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Does not exist
|
|
| impish |
Does not exist
|
|
| jammy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lunar |
Does not exist
|
|
|
mozjs52 Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Needs triage
|
|
| impish |
Does not exist
|
|
| jammy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lunar |
Does not exist
|
|
|
mozjs68 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Needs triage
|
|
| impish |
Does not exist
|
|
| jammy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lunar |
Does not exist
|
|
|
mozjs78 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| impish |
Ignored
(end of life)
|
|
| jammy |
Needs triage
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
| kinetic |
Ignored
(end of life, was needs-triage)
|
|
| lunar |
Needs triage
|
|
|
mozjs91 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| impish |
Does not exist
|
|
| jammy |
Needs triage
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lunar |
Does not exist
|
|
|
thunderbird Launchpad, Ubuntu, Debian |
bionic |
Released
(1:91.11.0+build2-0ubuntu0.18.04.1)
|
| focal |
Released
(1:91.11.0+build2-0ubuntu0.20.04.1)
|
|
| impish |
Released
(1:91.11.0+build2-0ubuntu0.21.10.1)
|
|
| trusty |
Does not exist
|
|
| xenial |
Ignored
(end of standard support)
|
|
| jammy |
Released
(1:91.11.0+build2-0ubuntu0.22.04.1)
|
|
| upstream |
Released
(91.10)
|
|
| kinetic |
Released
(1:91.10.0+build1-0ubuntu1)
|
|
| lunar |
Released
(1:91.10.0+build1-0ubuntu1)
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 6.5 |
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | Required |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity impact | High |
| Availability impact | None |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-20/#CVE-2022-31738
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-21/#CVE-2022-31738
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-22/#CVE-2022-31738
- https://ubuntu.com/security/notices/USN-5475-1
- https://ubuntu.com/security/notices/USN-5512-1
- NVD
- Launchpad
- Debian