Ubuntu 7065-1: Firefox Security Advisory Updates
ubuntu
October 14, 2024
Firefox could be made to run programs as your login if it opened a malicious website.
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Firefox could be made to run programs as your login if it opened a malicious website. Software Description: - firefox: Mozilla Open Source web browser Details: Damien Schaeffer discovered that Firefox did not properly manage memory in the content process when handling Animation timelines, leading to a use after free vulnerability. An attacker could possibly use this issue to achieve remote code execution.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS firefox 131.0.2+build1-0ubuntu0.20.04.1 After a standard system update you need to restart Firefox to make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-7065-1
CVE-2024-9680
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-7065-1
Topics Covered
Package Information
https://launchpad.net/ubuntu/+source/firefox/131.0.2+build1-0ubuntu0.20.04.1
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!