Nineteen security vulnerabilities in Mozilla Firefox, four of which are high-severity, have been fixed with the release of Firefox 102, according to SecurityWeek
Mozilla has addressed the high-severity use-after-free flaw in nsSHistory, tracked as CVE-2022-34470, which could be exploited to prompt arbitrary code execution, browser crashes, a denial-of-service
condition, or data corruption. Another high-severity bug, tracked as CVE-2022-34468, which could be abused to evade a CSP sandbox header has also been resolved, as well as the Linux-specific vulnerability, tracked as CVE-2022-34479, which could be leveraged to facilitate spoofing attacks.
Meanwhile, user privacy improvements, including the activation of Enhanced Tracking Protection strict mode, have been applied in Firefox 102.