Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Slackware 15.0: SSA:2024-283-01 critical: mozilla-firefox exploit

slackware
Calendar Grey October 9, 2024
Dist Slackware Esm H88
Fresh updates of mozilla-firefox available for Slackware 15.0 addressing a vital security concern. Update now to protect from potential vulnerabilities.
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix a security issue

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.16.1esr-i686-1_slack15.0.txz: Upgraded. This update contains a critical security fix: Use-after-free in Animation timeline. "An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild." For more information, see: https://www.firefox.com/en-US/firefox/115.16.1/releasenotes/?redirect_source=mozilla-org https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/ https://www.cve.org/CVERecord?id=CVE-2024-9680 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical code execution exploit slackware firefox

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/mozilla-firefox-115.16.1esr-i686-1_slack15.0.txz
Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/mozilla-firefox-115.16.1esr-x86_64-1_slack15.0.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/mozilla-firefox-128.3.1esr-i686-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/mozilla-firefox-128.3.1esr-x86_64-1.txz

MD5 Signatures

Slackware 15.0 package: 00c7a2a509f6c85744070daf20b07781 mozilla-firefox-115.16.1esr-i686-1_slack15.0.txz
Slackware x86_64 15.0 package: b6c3a0f2b962619b7dcc94fc5c837d4c mozilla-firefox-115.16.1esr-x86_64-1_slack15.0.txz
Slackware -current package: 5a2ff4e9f83f0e27c62986729855b27d xap/mozilla-firefox-128.3.1esr-i686-1.txz
Slackware x86_64 -current package: f3e0b28a1ba03c47e0a627dfa9326c5b xap/mozilla-firefox-128.3.1esr-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical code execution exploit slackware firefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg mozilla-firefox-115.16.1esr-i686-1_slack15.0.txz

Your message here