Mozilla Foundation Security Advisory 2022-29
Security Vulnerabilities fixed in Firefox ESR 91.12
- July 26, 2022
- Firefox ESR
- Fixed in
- Firefox ESR 91.12
#CVE-2022-36319: Mouse Position spoofing with CSS transforms
- Irvan Kurniawan
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed.
#CVE-2022-36318: Directory indexes for bundled resources reflected URL parameters
- Gijs Kruitbosch
When visiting directory listings for
chrome:// URLs as source text, some parameters were reflected.