Ubuntu
mozjs102 package

mozjs102 102.11.0-0ubuntu0.22.10.1 source package in Ubuntu

Changelog

mozjs102 (102.11.0-0ubuntu0.22.10.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: New upstream release (LP: #2018905)
    - CVE-2023-32211: Content process crash due to invalid wasm code
    - CVE-2023-32215: Memory safety bugs
    - CVE-2023-29536: Invalid free from JavaScript code
    - CVE-2023-29548: Incorrect optimization result on ARM64
    - CVE-2023-29550: Memory safety bugs
    - CVE-2023-29535: Potential Memory Corruption following Garbage Collector
      compaction
    - CVE-2023-25751: Incorrect code generation during JIT compilation
    - CVE-2023-25739: Use-after-free in mozilla::dom::ScriptLoadContext
    - CVE-2023-25735: Potential use-after-free from compartment mismatch

 -- Jeremy Bícha <email address hidden>  Tue, 09 May 2023 11:30:19 -0400

Upload details

Uploaded by:
Jeremy Bícha
Sponsored by:
Marc Deslauriers
Uploaded to:
Kinetic
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
mozjs102_102.11.0.orig.tar.xz 138.9 MiB c99ae985dfd1c8ec681d1156b520347f2bfa61f87cd8ab1969914b22fad760ff
mozjs102_102.11.0-0ubuntu0.22.10.1.debian.tar.xz 61.1 KiB 2580808468fa735b68b51c0d9de68a844acdc085d629da14c98b8d4c40e0e988
mozjs102_102.11.0-0ubuntu0.22.10.1.dsc 2.4 KiB 741c2eae37a04fd8a3ecd8f27dba20650631e3d2cfc7e73effc369dcd2e39c12

View changes file

Binary packages built by this source

libmozjs-102-0: SpiderMonkey JavaScript library

 SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of
 JavaScript. It is intended to be embedded in other applications
 that provide host environments for JavaScript.
 .
 This library is intended for use in contexts where only trusted
 JavaScript code will be run, such as GNOME's gjs, Cinnamon's cjs, and
 polkit's rules parsing. It should not be used to run untrusted JavaScript
 from web pages: use a security-supported implementation such as Firefox,
 Chrome or WebKitGTK's JavaScriptCore instead.

libmozjs-102-0-dbgsym: debug symbols for libmozjs-102-0
libmozjs-102-dev: SpiderMonkey JavaScript library - development headers

 SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of
 JavaScript. It is intended to be embedded in other applications
 that provide host environments for JavaScript.
 .
 This package contains the header files which are
 needed for developing SpiderMonkey embedders.
 .
 This library is intended for use in contexts where only trusted
 JavaScript code will be run, such as GNOME's gjs, Cinnamon's cjs, and
 polkit's rules parsing. It should not be used to run untrusted JavaScript
 from web pages: use a security-supported implementation such as Firefox,
 Chrome or WebKitGTK's JavaScriptCore instead.

libmozjs-102-dev-dbgsym: debug symbols for libmozjs-102-dev