Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2020:2147-1 Important: MozillaFirefox Security Fixes

suse
Calendar Grey August 6, 2020
Dist Suse Esm H88
Upgrade now live to resolve key concerns in MozillaFirefox for SUSE. Addresses performance and vulnerability challenges.
An update that fixes 10 vulnerabilities is now available

Summary

This update for MozillaFirefox fixes the following issues: This update for MozillaFirefox and pipewire fixes the following issues: MozillaFirefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes (bsc#1174538) * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks internal address to peer * CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy * CVE-2020-15653: Bypassing iframe sandbox when allowing popups * CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture * CVE-2020-15656: Type confusion for special arguments in IonMonkey * CVE-2020-15658: Overriding file type when saving to disk

Topics%20covered

Topics Covered

security advisory update important SUSE memory safety MozillaFirefox WebRTC

References

#1171433 #1174538

Cross- CVE-2020-15652 CVE-2020-15653 CVE-2020-15654

CVE-2020-15655 CVE-2020-15656 CVE-2020-15657

CVE-2020-15658 CVE-2020-15659 CVE-2020-6463

CVE-2020-6514

Affected Products:

SUSE Linux Enterprise Module for Desktop Applications 15-SP2

https://www.suse.com/security/cve/CVE-2020-15652.html

https://www.suse.com/security/cve/CVE-2020-15653.html

https://www.suse.com/security/cve/CVE-2020-15654.html

https://www.suse.com/security/cve/CVE-2020-15655.html

https://www.suse.com/security/cve/CVE-2020-15656.html

https://www.suse.com/security/cve/CVE-2020-15657.html

https://www.suse.com/security/cve/CVE-2020-15658.html

https://www.suse.com/security/cve/CVE-2020-15659.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:2147-1
Rating: important

Topics%20covered

Topics Covered

security advisory update important SUSE memory safety MozillaFirefox WebRTC

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here