QID 356268

service workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media combined with range requests might have allowed them to determine the presence or length of a media file.
This vulnerability affects firefox esr < 102.5, thunderbird < 102.5, and firefox < 107. (
( CVE-2022-45403) through a series of popup and <code>window.print()</code> calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
( CVE-2022-45404) freeing arbitrary <code>nsiinputstream</code>s on a different thread than creation could have led to a use-after-free and potentially exploitable crash.
( CVE-2022-45405) if an out-of-memory condition occurred when creating a javascript global, a javascript realm may be deleted while references to it lived on in a baseshape.
This could lead to a use-after-free causing a potentially exploitable crash.
( CVE-2022-45406) through a series of popups that reuse windowname, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
( CVE-2022-45408) the garbage collector could have been aborted in several states and zones and <code>gcruntime::finishcollection</code> may not have been called, leading to a use-after-free and potentially exploitable crash.
( CVE-2022-45409) when a serviceworker intercepted a request with <code>fetchevent</code>, the origin of the request was lost after the serviceworker took ownership of it.
Windows is unaffected.*.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.