Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

openSUSE 13.1: 2014:0212-1 Important: Firefox 27 Security Update

opensuse
Calendar Grey February 8, 2014
Dist Opensuse Esm H88
The upgrade for Google Chrome 98 on Ubuntu introduces essential security patches and enhances memory efficiency and SSL compatibility.
An update that contains security fixes can now be installed.

Description

Mozilla Firefox was updated to version 27. Mozilla

Seamonkey was updated to 2.24, fixing similar issues as

Firefox 27. Mozilla Thunderbird was updated to 24.3.0,

fixing similar issues as Firefox 27.

The Firefox 27 release brings TLS 1.2 support as a major

security feature.

It also fixes following security issues:

* MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 Miscellaneous

memory safety hazards (rv:27.0 / rv:24.3)

* MFSA 2014-02/CVE-2014-1479 (bmo#911864) Clone protected

content with XBL scopes

* MFSA 2014-03/CVE-2014-1480 (bmo#916726) UI selection

timeout missing on download prompts

* MFSA 2014-04/CVE-2014-1482 (bmo#943803) Incorrect use

of discarded images by RasterImage

* MFSA 2014-05/CVE-2014-1483 (bmo#950427) Information

disclosure with *FromPoint on iframes

* MFSA 2014-06/CVE-2014-1484 (bmo#953993) Profile path

leaks to Android system log

* MFSA 2014-07/CVE-2014-1485 (bmo#910139) XSLT

stylesheets treated as styles in...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory software update critical fix memory safety Mozilla Firefox openSUSE TLS support

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 13.1:

zypper in -t patch openSUSE-2014-119

- openSUSE 12.3:

zypper in -t patch openSUSE-2014-119

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 13.1 (i586 x86_64):

MozillaFirefox-27.0-8.1

MozillaFirefox-branding-upstream-27.0-8.1

MozillaFirefox-buildsymbols-27.0-8.1

MozillaFirefox-debuginfo-27.0-8.1

MozillaFirefox-debugsource-27.0-8.1

MozillaFirefox-devel-27.0-8.1

MozillaFirefox-translations-common-27.0-8.1

MozillaFirefox-translations-other-27.0-8.1

MozillaThunderbird-24.3.0-70.11.1

MozillaThunderbird-buildsymbols-24.3.0-70.11.1

MozillaThunderbird-debuginfo-24.3.0-70.11.1

MozillaThunderbird-debugsource-24.3.0-70.11.1

MozillaThunderbird-devel-24.3.0-70.11.1

MozillaThunderbird-translations-common-24.3.0-70.11.1

MozillaThunderbird-translations-other-24.3.0-70.11.1

enigmail-1.6.0+24.3.0-70.11.1

enigmail-debuginfo-1.6.0+24.3.0-70.11.1

libfreebl3-3.15.4-12.1

libfreebl3-debuginfo-3.15.4-12.1

libsoftokn3-3.15.4-12.1

libsoftokn3-debuginfo-3.15.4-12.1

mozilla-nss-3.15.4-12.1

mozilla-nss-certs-3.15.4-12.1

mozilla-nss-certs-debuginfo-3.15.4-12.1

mozilla-nss-debuginfo-3.15.4-12.1

mozilla-nss-debugsource-3.15.4-12.1

mozilla-nss-devel-3.15.4-12.1

mozilla-nss...

Read the Full Advisory

References

--

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2014:0212-1
Rating: important
Affected Products: openSUSE 13.1 openSUSE 12.3

Topics%20covered

Topics Covered

security advisory software update critical fix memory safety Mozilla Firefox openSUSE TLS support

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here