Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

SUSE Linux 11 SP2: 2013:0470-1 Important: Firefox Code Execution Fix

suse
Calendar Grey March 15, 2013
Dist Suse Esm H88
A crucial security enhancement has been rolled out for Mozilla Firefox on SUSE Linux. This important update addresses vulnerabilities that could be exploited if left unattended.
An update that fixes one vulnerability is now available

Summary

MozillaFirefox has been updated to the 17.0.4ESR release which fixes one important security issue: * MFSA 2013-29 / CVE-2013-0787: VUPEN Security, via TippingPoint's Zero Day Initiative, reported a use-after-free within the HTML editor when content script is run by the document.execCommand() function while internal editor operations are occurring. This could allow for arbitrary code execution. Security Issue reference: * CVE-2013-0787 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11 SP2 for VMware: zypper in -t patch slessp2-firefox-201303-7464 - SUSE Linux Enterprise Server 11 SP2:

Topics%20covered

Topics Covered

security advisory update code execution important SUSE Linux Mozilla Firefox

References

#808243

Cross- CVE-2013-0787

Affected Products:

SUSE Linux Enterprise Server 11 SP2 for VMware

SUSE Linux Enterprise Server 11 SP2

SUSE Linux Enterprise Desktop 11 SP2

https://www.suse.com/security/cve/CVE-2013-0787.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2013:0470-1
Rating: important

Topics%20covered

Topics Covered

security advisory update code execution important SUSE Linux Mozilla Firefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here