Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 530
Alerts This Week
Warning Icon 1 530

Ubuntu: 4140-1 Moderate: Firefox Mouse Pointer Hijack Threat

ubuntu
Calendar Grey September 25, 2019
Dist Ubuntu Esm H88
A recent Ubuntu Security Notice highlights a vulnerability in Firefox that may allow attackers to manipulate the mouse cursor via compromised websites.
Firefox could be made to hijack the mouse pointer it if opened a malicious website.

Summary

Firefox could be made to hijack the mouse pointer it if opened a malicious

website.

Software Description:

- firefox: Mozilla Open Source web browser

Details:

It was discovered that no user notification was given when pointer lock is

enabled. If a user were tricked in to opening a specially crafted website,

an attacker could potentially exploit this to hijack the mouse pointer and

confuse users.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
  firefox                         69.0.1+build1-0ubuntu0.19.04.1

Ubuntu 18.04 LTS:
  firefox                         69.0.1+build1-0ubuntu0.18.04.1

Ubuntu 16.04 LTS:
  firefox                         69.0.1+build1-0ubuntu0.16.04.1

After a standard system update you need to restart Firefox to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4140-1

CVE-2019-11754

September 25, 2019

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.