Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

SUSE Linux 11-SP4 Important: MozillaFirefox Update for 51 Issues

suse
Calendar Grey August 22, 2017
Dist Suse Esm H88
New version released for Mozilla Firefox and associated tools addressing 51 security issues, essential for ongoing protection.
An update that fixes 51 vulnerabilities is now available

Summary

This update for MozillaFirefox and mozilla-nss fixes the following issues: Security issues fixed: - Fixes in Firefox ESR 52.2 (bsc#1043960,MFSA 2017-16) - CVE-2017-7758: Out-of-bounds read in Opus encoder - CVE-2017-7749: Use-after-free during docshell reloading - CVE-2017-7751: Use-after-free with content viewer listeners - CVE-2017-5472: Use-after-free using destroyed node when regenerating trees - CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 - CVE-2017-7752: Use-after-free with IME input - CVE-2017-7750: Use-after-free with track elements - CVE-2017-7768: 32 byte arbitrary file read through Mozilla Maintenance Service - CVE-2017-7778: Vulnerabilities in the Graphite 2 library - CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object

References

#1025108 #1031485 #1035082 #1043960 #930392

#930496 #935510 #939460 #945842 #953831 #954002

#955382 #962765 #964468 #966220 #968771

Cross- CVE-2015-5276 CVE-2016-10196 CVE-2017-5429

CVE-2017-5430 CVE-2017-5432 CVE-2017-5433

CVE-2017-5434 CVE-2017-5435 CVE-2017-5436

CVE-2017-5438 CVE-2017-5439 CVE-2017-5440

CVE-2017-5441 CVE-2017-5442 CVE-2017-5443

CVE-2017-5444 CVE-2017-5445 CVE-2017-5446

CVE-2017-5447 CVE-2017-5448 CVE-2017-5449

CVE-2017-5451 CVE-2017-5454 CVE-2017-5455

CVE-2017-5456 CVE-2017-5459 CVE-2017-5460

CVE-2017-5461 CVE-2017-5462 CVE-2017-5464

CVE-2017-5465 CVE-2017-5466 CVE-2017-5467

CVE-2017-5469 CVE-2017-5470 CVE-2017-5472

CVE-2017-7749 CVE-2017-7750 CVE-2017-7751

CVE-2017-7752...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2235-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.