What Are You Looking For?

Sign Up
Synopsis:          Critical: firefox security update
Advisory ID:       SLSA-2018:0527-1
Issue Date:        2018-03-15
CVE Numbers:       CVE-2018-5125
                   CVE-2018-5127
                   CVE-2018-5129
                   CVE-2018-5130
                   CVE-2018-5131
                   CVE-2018-5144
                   CVE-2018-5145
--

This update upgrades Firefox to version 52.7.0 ESR.

Security Fix(es):

* Mozilla: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7
(MFSA 2018-07) (CVE-2018-5125)

* Mozilla: Buffer overflow manipulating SVG animatedPathSegList (MFSA
2018-07) (CVE-2018-5127)

* Mozilla: Out-of-bounds write with malformed IPC messages (MFSA 2018-07)
(CVE-2018-5129)

* Mozilla: Mismatched RTP payload type can trigger memory corruption (MFSA
2018-07) (CVE-2018-5130)

* Mozilla: Fetch API improperly returns cached copies of no-store/no-cache
resources (MFSA 2018-07) (CVE-2018-5131)

* Mozilla: Integer overflow during Unicode conversion (MFSA 2018-07)
(CVE-2018-5144)

* Mozilla: Memory safety bugs fixed in Firefox ESR 52.7 (MFSA 2018-07)
(CVE-2018-5145)
--

SL7
  x86_64
    firefox-52.7.0-1.el7_4.x86_64.rpm
    firefox-debuginfo-52.7.0-1.el7_4.x86_64.rpm
    firefox-52.7.0-1.el7_4.i686.rpm
    firefox-debuginfo-52.7.0-1.el7_4.i686.rpm

- Scientific Linux Development Team

SciLinux: SLSA-2018-0527-1 Critical: firefox on SL7.x x86_64

This update upgrades Firefox to version 52.7.0 ESR

Summary

Critical: firefox security update



Security Fixes

* Mozilla: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 (MFSA 2018-07) (CVE-2018-5125)
* Mozilla: Buffer overflow manipulating SVG animatedPathSegList (MFSA 2018-07) (CVE-2018-5127)
* Mozilla: Out-of-bounds write with malformed IPC messages (MFSA 2018-07) (CVE-2018-5129)
* Mozilla: Mismatched RTP payload type can trigger memory corruption (MFSA 2018-07) (CVE-2018-5130)
* Mozilla: Fetch API improperly returns cached copies of no-store/no-cache resources (MFSA 2018-07) (CVE-2018-5131)
* Mozilla: Integer overflow during Unicode conversion (MFSA 2018-07) (CVE-2018-5144)
* Mozilla: Memory safety bugs fixed in Firefox ESR 52.7 (MFSA 2018-07) (CVE-2018-5145)
SL7 x86_64 firefox-52.7.0-1.el7_4.x86_64.rpm firefox-debuginfo-52.7.0-1.el7_4.x86_64.rpm firefox-52.7.0-1.el7_4.i686.rpm firefox-debuginfo-52.7.0-1.el7_4.i686.rpm
- Scientific Linux Development Team

Severity
Advisory ID: SLSA-2018:0527-1
Issued Date: : 2018-03-15
CVE Numbers: CVE-2018-5125
CVE-2018-5127
CVE-2018-5129

Related News

Linux version of Qilin ransomware focuses on VMware ESXi

Dec 4, 2023

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo