Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

SUSE: 2020:4051-1 Critical: Firefox Security Vulnerabilities Detected

suse
Calendar Grey November 14, 2018
Dist Suse Esm H88
SUSE Security Update for MozillaFirefox resolves 4 critical security issues with necessary update instructions.
An update that fixes 5 vulnerabilities is now available

Summary

This update for MozillaThunderbird fixes the following issues: Thunderbird 63 ESR was updated to version 60.3.0 to fix the following issues (bsc#1112852): Security issues fixed (MFSA 2018-28): - CVE-2018-12389: Fixed memory safety bugs. - CVE-2018-12390: Fixed memory safety bugs. - CVE-2018-12391: Fixed HTTP Live Stream audio data is accessible cross-origin. - CVE-2018-12392: Fixed crash with nested event loops. - CVE-2018-12393: Fixed integer overflow during Unicode conversion while loading JavaScript. Non-security issues fixed: - various theme fixes - Shift+PageUp/PageDown in Write window - Gloda attachment filtering - Mailing list address auto-complete enter/return handling - Thunderbird hung if HTML signature references non-existent image

References

#1112852

Cross- CVE-2018-12389 CVE-2018-12390 CVE-2018-12391

CVE-2018-12392 CVE-2018-12393

Affected Products:

SUSE Linux Enterprise Workstation Extension 15

https://www.suse.com/security/cve/CVE-2018-12389.html

https://www.suse.com/security/cve/CVE-2018-12390.html

https://www.suse.com/security/cve/CVE-2018-12391.html

https://www.suse.com/security/cve/CVE-2018-12392.html

https://www.suse.com/security/cve/CVE-2018-12393.html

https://bugzilla.suse.com/1112852

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2018:3769-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.