Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE 12: 2016:1691-1 Important: MozillaFirefox Buffer Overflow Fix

suse
Calendar Grey June 27, 2016
Dist Suse Esm H88
Significant SUSE patch for MozillaFirefox and associated tools addresses 9 major vulnerabilities, improving overall browser safety.
An update that solves 9 vulnerabilities and has four fixes An update that solves 9 vulnerabilities and has four fixes An update that solves 9 vulnerabilities and has four fixes is ...

Summary

MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nss and mozilla-nspr were updated to fix nine security issues. MozillaFirefox was updated to version 45.2.0 ESR. mozilla-nss was updated to version 3.21.1. These security issues were fixed: - CVE-2016-2834: Memory safety bugs in NSS (MFSA 2016-61) (bsc#983639). - CVE-2016-2824: Out-of-bounds write with WebGL shader (MFSA 2016-53) (bsc#983651). - CVE-2016-2822: Addressbar spoofing though the SELECT element (MFSA 2016-52) (bsc#983652). - CVE-2016-2821: Use-after-free deleting tables from a contenteditable document (MFSA 2016-51) (bsc#983653). - CVE-2016-2819: Buffer overflow parsing HTML5 fragments (MFSA 2016-50) (bsc#983655). - CVE-2016-2828: Use-after-free when textures are used in WebGL operations

Topics%20covered

Topics Covered

security advisory buffer overflow software update important browser security SUSE MozillaFirefox

References

#982366 #983549 #983638 #983639 #983643 #983646

#983651 #983652 #983653 #983655 #984006 #984126

#985659

Cross- CVE-2016-2815 CVE-2016-2818 CVE-2016-2819

CVE-2016-2821 CVE-2016-2822 CVE-2016-2824

CVE-2016-2828 CVE-2016-2831 CVE-2016-2834

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP1

SUSE Linux Enterprise Software Development Kit 12

SUSE Linux Enterprise Server 12-SP1

SUSE Linux Enterprise Server 12

SUSE Linux Enterprise Desktop 12-SP1

SUSE Linux Enterprise Desktop 12

https://www.suse.com/security/cve/CVE-2016-2815.html

https://www.suse.com/security/cve/CVE-2016-2818.html

https://www.suse.com/security/cve/CVE-2016-2819.html

https://www.suse.com/security/cve/CVE-2016-2821.html

https://www.suse.com/security/cve/CVE-2016-2822.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2016:1691-1
Rating: important

Topics%20covered

Topics Covered

security advisory buffer overflow software update important browser security SUSE MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here