Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

openSUSE Leap 42.1: 2016:1552-1 Important: MozillaFirefox Security Fixes

opensuse
Calendar Grey June 11, 2016
Dist Opensuse Esm H88
Essential openSUSE patch addresses 11 vulnerabilities in MozillaFirefox and mozilla-nss, enhancing both security and efficiency.
An update that solves 13 vulnerabilities and has two fixes An update that solves 13 vulnerabilities and has two fixes An update that solves 13 vulnerabilities and has two fixes is ...

Description

This update to Mozilla Firefox 47 fixes the following issues (boo#983549):

Security fixes:

- CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards

(boo#983638 MFSA 2016-49)

- CVE-2016-2819: Buffer overflow parsing HTML5 fragments (boo#983655 MFSA

2016-50)

- CVE-2016-2821: Use-after-free deleting tables from a contenteditable

document (boo#983653 MFSA 2016-51)

- CVE-2016-2822: Addressbar spoofing though the SELECT element (boo#983652

MFSA 2016-52)

- CVE-2016-2824: Out-of-bounds write with WebGL shader (boo#983651 MFSA

2016-53)

- CVE-2016-2825: Partial same-origin-policy through setting location.host

through data URI (boo#983649 MFSA 2016-54)

- CVE-2016-2828: Use-after-free when textures are used in WebGL operations

after recycle pool destruction (boo#983646 MFSA 2016-56)

- CVE-2016-2829: Incorrect icon displayed on permissions notifications

(boo#983644 MFSA 2016-57)

- CVE-2016-2831: Entering...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory software update important web security multiple fixes openSUSE MozillaFirefox

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2016-704=1

- openSUSE 13.2:

zypper in -t patch openSUSE-2016-704=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i586 x86_64):

MozillaFirefox-47.0-24.1

MozillaFirefox-branding-upstream-47.0-24.1

MozillaFirefox-buildsymbols-47.0-24.1

MozillaFirefox-debuginfo-47.0-24.1

MozillaFirefox-debugsource-47.0-24.1

MozillaFirefox-devel-47.0-24.1

MozillaFirefox-translations-common-47.0-24.1

MozillaFirefox-translations-other-47.0-24.1

libfreebl3-3.23-18.1

libfreebl3-debuginfo-3.23-18.1

libsoftokn3-3.23-18.1

libsoftokn3-debuginfo-3.23-18.1

mozilla-nss-3.23-18.1

mozilla-nss-certs-3.23-18.1

mozilla-nss-certs-debuginfo-3.23-18.1

mozilla-nss-debuginfo-3.23-18.1

mozilla-nss-debugsource-3.23-18.1

mozilla-nss-devel-3.23-18.1

mozilla-nss-sysinit-3.23-18.1

mozilla-nss-sysinit-debuginfo-3.23-18.1

mozilla-nss-tools-3.23-18.1

mozilla-nss-tools-debuginfo-3.23-18.1

- openSUSE Leap 42.1 (x86_64):

libfreebl3-32bit-3.23-18.1

libfreebl3-debuginfo-32bit-3.23-18.1

libsoftokn3-32bit-3.23-18.1

libsoftokn3-debuginfo-32bit-3.23-18.1

mozilla-nss-32bit-3.23-18.1

mozilla-nss-certs-32bit-3.23-18.1

mozilla-nss-certs-debuginfo-32bit-3.23-18.1

mozill...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2016-2815.html

https://www.suse.com/security/cve/CVE-2016-2818.html

https://www.suse.com/security/cve/CVE-2016-2819.html

https://www.suse.com/security/cve/CVE-2016-2821.html

https://www.suse.com/security/cve/CVE-2016-2822.html

https://www.suse.com/security/cve/CVE-2016-2824.html

https://www.suse.com/security/cve/CVE-2016-2825.html

https://www.suse.com/security/cve/CVE-2016-2828.html

https://www.suse.com/security/cve/CVE-2016-2829.html

https://www.suse.com/security/cve/CVE-2016-2831.html

https://www.suse.com/security/cve/CVE-2016-2832.html

https://www.suse.com/security/cve/CVE-2016-2833.html

https://www.suse.com/security/cve/CVE-2016-2834.html

https://bugzilla.suse.com/show_bug.cgi?id=980384

https://bugzilla.suse.com/show_bug.cgi?id=981695

https://bugzilla.suse.com/show_bug.cgi?id=983549

https://bugzilla.suse.com/show_bug.cgi?id=983632

https://bugzilla.suse.com/show_bug.cgi?id=983638

https://bugzilla.suse.com/show_bug.cgi?id=983639

https://bugzilla.suse.com/show_bug.c...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2016:1552-1
Rating: important
Affected Products: openSUSE Leap 42.1 openSUSE 13.2

Topics%20covered

Topics Covered

security advisory software update important web security multiple fixes openSUSE MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here