Mageia: 2018-0420 Moderate: Mozilla Firefox Memory Issues Fixed

mageia

October 27, 2018

Updated firefox packages fix security vulnerabilities: Mozilla: Memory safety bugs fixed in Firefox ESR 60.3 (CVE-2018-12389)

Summary

Updated firefox packages fix security vulnerabilities:
Mozilla: Memory safety bugs fixed in Firefox ESR 60.3 (CVE-2018-12389).
Mozilla: Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3 (CVE-2018-12390).
Mozilla: Crash with nested event loops (CVE-2018-12392).
Mozilla: Integer overflow during Unicode conversion while loading JavaScript (CVE-2018-12393).
Mozilla: WebExtension bypass of domain restrictions through header rewriting (CVE-2018-12395).
Mozilla: WebExtension content scripts can execute in disallowed contexts (CVE-2018-12396).
Mozilla: WebExtension local file permission check bypass (CVE-2018-12397).

References

- https://bugs.mageia.org/show_bug.cgi?id=23751

- https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/

- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/

- https://access.redhat.com/errata/RHSA-2018:3005

- https://www.cve.org/CVERecord?id=CVE-2018-12389

- https://www.cve.org/CVERecord?id=CVE-2018-12390

- https://www.cve.org/CVERecord?id=CVE-2018-12392

- https://www.cve.org/CVERecord?id=CVE-2018-12393

- https://www.cve.org/CVERecord?id=CVE-2018-12395

- https://www.cve.org/CVERecord?id=CVE-2018-12396

- https://www.cve.org/CVERecord?id=CVE-2018-12397

Topics Covered

security advisory update security fix Mozilla Firefox memory safety Mageia

Resolution

SRPMS

- 6/core/firefox-60.3.0-1.mga6

- 6/core/firefox-l10n-60.3.0-1.mga6

- 6/core/nspr-4.20-1.mga6

- 6/core/nss-3.36.5-1.2.mga6

- 6/core/rootcerts-20181001.00-1.mga6

Publication date: 27 Oct 2018

URL: https://advisories.mageia.org/MGASA-2018-0420.html

Type: security

CVE: CVE-2018-12389, CVE-2018-12390, CVE-2018-12392, CVE-2018-12393, CVE-2018-12395, CVE-2018-12396, CVE-2018-12397

Topics Covered

security advisory update security fix Mozilla Firefox memory safety Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2018-0420 Moderate: Mozilla Firefox Memory Issues Fixed

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2018-0420 Moderate: Mozilla Firefox Memory Issues Fixed

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!