Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2019:2871-1 Important: MozillaFirefox Security Fixes

suse
Calendar Grey October 31, 2019
Dist Suse Esm H88
SUSE Security Update for MozillaFirefox fixes 9 important issues across multiple distributions.
An update that fixes 9 vulnerabilities is now available

Summary

This update for MozillaFirefox, MozillaFirefox-branding-SLE fixes the following issues: Changes in MozillaFirefox: Security issues fixed: - CVE-2019-15903: Fixed a heap overflow in the expat library (bsc#1149429). - CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB (bsc#1154738). - CVE-2019-11758: Fixed a potentially exploitable crash due to 360 Total Security (bsc#1154738). - CVE-2019-11759: Fixed a stack buffer overflow in HKDF output (bsc#1154738). - CVE-2019-11760: Fixed a stack buffer overflow in WebRTC networking (bsc#1154738). - CVE-2019-11761: Fixed an unintended access to a privileged JSONView object (bsc#1154738). - CVE-2019-11762: Fixed a same-origin-property violation (bsc#1154738). - CVE-2019-11763: Fixed an XSS bypass (bsc#1154738).

Topics%20covered

Topics Covered

security advisory heap overflow SUSE Linux Enterprise MozillaFirefox DoH

References

#1104841 #1129528 #1137990 #1149429 #1151186

#1153423 #1153869 #1154738

Cross- CVE-2019-11757 CVE-2019-11758 CVE-2019-11759

CVE-2019-11760 CVE-2019-11761 CVE-2019-11762

CVE-2019-11763 CVE-2019-11764 CVE-2019-15903

Affected Products:

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15

SUSE Linux Enterprise Module for Desktop Applications 15-SP1

SUSE Linux Enterprise Module for Desktop Applications 15

https://www.suse.com/security/cve/CVE-2019-11757.html

https://www.suse.com/security/cve/CVE-2019-11758.html

https://www.suse.com/security/cve/CVE-2019-11759.html

https://www.suse.com/security/cve/CVE-2019-11760.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:2871-1
Rating: important

Topics%20covered

Topics Covered

security advisory heap overflow SUSE Linux Enterprise MozillaFirefox DoH

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here