SUSE: 2016:2131-1 Critical: MozillaFirefox Memory Fix for Security Issues

suse

August 22, 2016

An update that fixes 15 vulnerabilities is now available

Summary

MozillaFirefox was updated to 45.3.0 ESR to fix the following issues (bsc#991809): * MFSA 2016-62/CVE-2016-2835/CVE-2016-2836 Miscellaneous memory safety hazards (rv:48.0 / rv:45.3) * MFSA 2016-63/CVE-2016-2830 Favicon network connection can persist when page is closed * MFSA 2016-64/CVE-2016-2838 Buffer overflow rendering SVG with bidirectional content * MFSA 2016-65/CVE-2016-2839 Cairo rendering crash due to memory allocation issue with FFmpeg 0.10 * MFSA 2016-67/CVE-2016-5252 Stack underflow during 2D graphics rendering * MFSA 2016-70/CVE-2016-5254 Use-after-free when using alt key and toplevel menus * MFSA 2016-72/CVE-2016-5258 Use-after-free in DTLS during WebRTC session shutdown * MFSA 2016-73/CVE-2016-5259 Use-after-free in service workers with nested sync events

Topics Covered

security advisory critical software update important SUSE Linux memory safety MozillaFirefox

References

#989196 #990628 #990856 #991809

Cross- CVE-2016-2830 CVE-2016-2835 CVE-2016-2836

CVE-2016-2837 CVE-2016-2838 CVE-2016-2839

CVE-2016-5252 CVE-2016-5254 CVE-2016-5258

CVE-2016-5259 CVE-2016-5262 CVE-2016-5263

CVE-2016-5264 CVE-2016-5265 CVE-2016-6354

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP1

SUSE Linux Enterprise Server for SAP 12

SUSE Linux Enterprise Server 12-SP1

SUSE Linux Enterprise Server 12-LTSS

SUSE Linux Enterprise Desktop 12-SP1

https://www.suse.com/security/cve/CVE-2016-2830.html

https://www.suse.com/security/cve/CVE-2016-2835.html

https://www.suse.com/security/cve/CVE-2016-2836.html

https://www.suse.com/security/cve/CVE-2016-2837.html

https://www.suse.com/security/cve/CVE-2016-2838.html

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:2131-1

Rating: important

Topics Covered

security advisory critical software update important SUSE Linux memory safety MozillaFirefox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2131-1 Critical: MozillaFirefox Memory Fix for Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2131-1 Critical: MozillaFirefox Memory Fix for Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!