Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Mageia 7 Advisory MGASA-2020-0027: Firefox Injection Risk and Fix

mageia
Calendar Grey January 9, 2020
Dist Mageia Esm H88
Revised Chromium bundles address severe vulnerabilities outlined in notice MGASA-2023-0091 for Mandriva platforms.
When pasting a

Summary

When pasting a

References

- https://bugs.mageia.org/show_bug.cgi?id=26027

- https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/

- https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/

-

-

- https://www.firefox.com/en-US/firefox/68.4.0/releasenotes/?redirect_source=mozilla-org

- https://www.firefox.com/en-US/firefox/68.4.1/releasenotes/?redirect_source=mozilla-org

- https://www.cve.org/CVERecord?id=CVE-2019-17016

- https://www.cve.org/CVERecord?id=CVE-2019-17017

- https://www.cve.org/CVERecord?id=CVE-2019-17022

- https://www.cve.org/CVERecord?id=CVE-2019-17024

- https://www.cve.org/CVERecord?id=CVE-2019-17026

Topics%20covered

Topics Covered

security advisory firefox data exfiltration injection major release type confusion

Resolution

SRPMS

- 7/core/firefox-68.4.1-1.mga7

- 7/core/firefox-l10n-68.4.1-1.mga7

- 7/core/nss-3.49.0-1.mga7

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 09 Jan 2020
URL: https://advisories.mageia.org/MGASA-2020-0027.html
Type: security
CVE: CVE-2019-17016, CVE-2019-17017, CVE-2019-17022, CVE-2019-17024, CVE-2019-17026

Topics%20covered

Topics Covered

security advisory firefox data exfiltration injection major release type confusion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here