Ubuntu
mozjs102 package

mozjs102 102.11.0-0ubuntu0.22.04.1 source package in Ubuntu

Changelog

mozjs102 (102.11.0-0ubuntu0.22.04.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Backport to Ubuntu 22.04 LTS (LP: #2018905)
    - CVE-2023-32211: Content process crash due to invalid wasm code
    - CVE-2023-32215: Memory safety bugs
    - CVE-2023-29536: Invalid free from JavaScript code
    - CVE-2023-29548: Incorrect optimization result on ARM64
    - CVE-2023-29550: Memory safety bugs
    - CVE-2023-29535: Potential Memory Corruption following Garbage Collector
      compaction
    - CVE-2023-25751: Incorrect code generation during JIT compilation
    - CVE-2023-25739: Use-after-free in mozilla::dom::ScriptLoadContext
    - CVE-2023-25735: Potential use-after-free from compartment mismatch

 -- Jeremy Bícha <email address hidden>  Tue, 09 May 2023 11:30:19 -0400

Upload details

Uploaded by:
Jeremy Bícha
Sponsored by:
Marc Deslauriers
Uploaded to:
Jammy
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
mozjs102_102.11.0.orig.tar.xz 138.9 MiB c99ae985dfd1c8ec681d1156b520347f2bfa61f87cd8ab1969914b22fad760ff
mozjs102_102.11.0-0ubuntu0.22.04.1.debian.tar.xz 61.1 KiB 90450e52444c4c9ec497a6b8d5b9435fe01ea0e0cc0b8670c3a2cea111907b8a
mozjs102_102.11.0-0ubuntu0.22.04.1.dsc 2.4 KiB c3ad289ca4a07c0cbc3d60480eb0638cc0fca2242197dddc6f6253700803e21e

View changes file

Binary packages built by this source

libmozjs-102-0: SpiderMonkey JavaScript library

 SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of
 JavaScript. It is intended to be embedded in other applications
 that provide host environments for JavaScript.
 .
 This library is intended for use in contexts where only trusted
 JavaScript code will be run, such as GNOME's gjs, Cinnamon's cjs, and
 polkit's rules parsing. It should not be used to run untrusted JavaScript
 from web pages: use a security-supported implementation such as Firefox,
 Chrome or WebKitGTK's JavaScriptCore instead.

libmozjs-102-0-dbgsym: debug symbols for libmozjs-102-0
libmozjs-102-dev: SpiderMonkey JavaScript library - development headers

 SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of
 JavaScript. It is intended to be embedded in other applications
 that provide host environments for JavaScript.
 .
 This package contains the header files which are
 needed for developing SpiderMonkey embedders.
 .
 This library is intended for use in contexts where only trusted
 JavaScript code will be run, such as GNOME's gjs, Cinnamon's cjs, and
 polkit's rules parsing. It should not be used to run untrusted JavaScript
 from web pages: use a security-supported implementation such as Firefox,
 Chrome or WebKitGTK's JavaScriptCore instead.

libmozjs-102-dev-dbgsym: debug symbols for libmozjs-102-dev