SUSE: 2016:0820-1 Important: MozillaFirefox Memory Safety Issues
suse
March 18, 2016
An update that contains security fixes can now be An update that contains security fixes can now be An update that contains security fixes can now be installed
Summary
Mozilla Firefox was updated to 38.7.0 ESR, fixing the following security issues: * MFSA 2016-16/CVE-2016-1952/CVE-2016-1953: Miscellaneous memory safety hazards (rv:45.0 / rv:38.7) * MFSA 2016-17/CVE-2016-1954: Local file overwriting and potential privilege escalation through CSP reports * MFSA 2016-20/CVE-2016-1957: Memory leak in libstagefright when deleting an array during MP4 processing * MFSA 2016-21/CVE-2016-1958: Displayed page address can be overridden * MFSA 2016-23/CVE-2016-1960: Use-after-free in HTML5 string parser * MFSA 2016-24/CVE-2016-1961: Use-after-free in SetBody * MFSA 2016-25/CVE-2016-1962: Use-after-free when using multiple WebRTC data channels * MFSA 2016-27/CVE-2016-1964: Use-after-free during XML transformations
References
#969894
Affected Products:
SUSE Linux Enterprise Server 10 SP4 LTSS
https://bugzilla.suse.com/969894
https://scc.suse.com:443/patches/?keywords=482a54f33ffb2bd9e847625a26c86780
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2016:0820-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!