These vulnerabilities were addressed in
- Mozilla Firefox version 105
- Firefox ESR version 102.03
- Thunderbird version 102.03
If you are a datajar.mobi Fully Managed or Hybrid customer, this update has been released via our Auto-Update framework and macOS devices within scope should receive this patch within 30 minutes of coming online.
If you are an Auto-Update for Jamf customer and you are deploying Mozilla Firefox via Auto-Update for Jamf, we suggest you flush any policies to trigger the update when macOS devices next check-in.
If you have any problems, concerns or questions, please let us know.
More information on these updates can be found here:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-39/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-40/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-41/