

Tor Browser 11.5.8 updates GeckoView on Android to Firefox ESR 102.5 and includes important security updates. CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5.CVE-2022-45420: Iframe contents could be rendered outside the iframe.

CVE-2022-45416: Keystroke Side-Channel Leakage.CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers.CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers.CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy.

