Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Ubuntu 7065-1: Firefox Security Advisory Updates

ubuntu
Calendar Grey October 14, 2024
Scroller Ubuntu
A security notice for Firefox in Ubuntu detailing a critical memory management issue that may allow remote execution.
Firefox could be made to run programs as your login if it opened a malicious website.

Summary

Firefox could be made to run programs as your login if it opened a

malicious website.

Software Description:

- firefox: Mozilla Open Source web browser

Details:

Damien Schaeffer discovered that Firefox did not properly manage memory in

the content process when handling Animation timelines, leading to a use

after free vulnerability. An attacker could possibly use this issue to

achieve remote code execution.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
   firefox                         131.0.2+build1-0ubuntu0.20.04.1

After a standard system update you need to restart Firefox to make all the
necessary changes.

References

https://ubuntu.com/security/notices/USN-7065-1

CVE-2024-9680

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7065-1

Topics%20covered

Topics Covered

No topics assigned

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.