Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2020:14456-1 Moderate: MozillaFirefox Update and Fixes

suse
Calendar Grey August 18, 2020
Dist Suse Esm H88
The latest release of MozillaFirefox tackles various problems and includes patches specifically for SUSE, resolving significant security vulnerabilities.
An update that fixes 10 vulnerabilities is now available

Summary

This update for MozillaFirefox fixes the following issues: - Fix broken translation-loading (boo#1173991) * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more - Mozilla Firefox 78.1 ESR * Fixed: Various stability, functionality, and security fixe (MFSA 2020-32) (bsc#1174538). * CVE-2020-15652 (bmo#1634872) Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514 (bmo#1642792) WebRTC data channel leaks internal address to peer * CVE-2020-15655 (bmo#1645204) Extension APIs could be used to bypass Same-Origin Policy * CVE-2020-15653 (bmo#1521542) Bypassing iframe sandbox when allowing popups * CVE-2020-6463 (bmo#1635293) Use-after-free in ANGLE

Topics%20covered

Topics Covered

security advisory moderate update vulnerability patch MozillaFirefox SUSE/Linux

References

#1173948 #1173991 #1174538

Cross- CVE-2020-15652 CVE-2020-15653 CVE-2020-15654

CVE-2020-15655 CVE-2020-15656 CVE-2020-15657

CVE-2020-15658 CVE-2020-15659 CVE-2020-6463

CVE-2020-6514

Affected Products:

SUSE Linux Enterprise Server 11-SP4-LTSS

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2020-15652.html

https://www.suse.com/security/cve/CVE-2020-15653.html

https://www.suse.com/security/cve/CVE-2020-15654.html

https://www.suse.com/security/cve/CVE-2020-15655.html

https://www.suse.com/security/cve/CVE-2020-15656.html

https://www.suse.com/security/cve/CVE-2020-15657.html

https://www.suse.com/security/cve/CVE-2020-15658.html

https://www.suse.com/security/cve/CVE-2020-15659.html

Announcement ID: SUSE-SU-2020:14456-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update vulnerability patch MozillaFirefox SUSE/Linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here