What Are You Looking For?

Sign Up
MGASA-2018-0393 - Updated firefox packages fix security vulnerability

Publication date: 01 Oct 2018
URL: https://advisories.mageia.org/MGASA-2018-0393.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2018-12384

Firefox 60 is now the only supported version of the ESR series and it
brings a completely new browser engine, designed to take full advantage of
the processing power in modern devices. Firefox also now exclusively
supports extensions built using the WebExtension API.

This update brings Firefox 60.2.1 along with the needed updated libraries :
- NSS 3.36.5 (fixes CVE CVE-2018-12384)
- Sqlite 3.22.0
- Hunspell 1.6.2

References:
- https://bugs.mageia.org/show_bug.cgi?id=23511
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12384

SRPMS:
- 6/core/firefox-60.2.1-1.mga6
- 6/core/firefox-l10n-60.2.1-1.mga6
- 6/core/nss-3.36.5-1.1.mga6
- 6/core/sqlite3-3.22.0-2.1.mga6
- 6/core/hunspell1.6-1.6.2-1.mga6

Mageia 2018-0393: firefox security update

Firefox 60 is now the only supported version of the ESR series and it brings a completely new browser engine, designed to take full advantage of the processing power in modern devi...

Summary

Firefox 60 is now the only supported version of the ESR series and it brings a completely new browser engine, designed to take full advantage of the processing power in modern devices. Firefox also now exclusively supports extensions built using the WebExtension API.
This update brings Firefox 60.2.1 along with the needed updated libraries : - NSS 3.36.5 (fixes CVE CVE-2018-12384) - Sqlite 3.22.0 - Hunspell 1.6.2

References

- https://bugs.mageia.org/show_bug.cgi?id=23511

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12384

Resolution

MGASA-2018-0393 - Updated firefox packages fix security vulnerability

SRPMS

- 6/core/firefox-60.2.1-1.mga6

- 6/core/firefox-l10n-60.2.1-1.mga6

- 6/core/nss-3.36.5-1.1.mga6

- 6/core/sqlite3-3.22.0-2.1.mga6

- 6/core/hunspell1.6-1.6.2-1.mga6

Severity
Publication date: 01 Oct 2018
URL: https://advisories.mageia.org/MGASA-2018-0393.html
Type: security
CVE: CVE-2018-12384

Related News

Linux version of Qilin ransomware focuses on VMware ESXi

Dec 4, 2023

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo