Synopsis: Important: firefox security update Advisory ID: SLSA-2022:6997-1 Issue Date: 2022-10-19 CVE Numbers: CVE-2022-40674 -- This update upgrades Firefox to version 102.3.0 ESR. Security Fix(es): * expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE -- SL7 x86_64 firefox-102.3.0-7.el7_9.x86_64.rpm firefox-debuginfo-102.3.0-7.el7_9.x86_64.rpm firefox-102.3.0-7.el7_9.i686.rpm firefox-debuginfo-102.3.0-7.el7_9.i686.rpm - Scientific Linux Development Team