[ELSA-2018-2692] firefox security update

Severity Critical

Affected Packages 1

CVEs 5

[60.2.0-1.0.1]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[60.2.0-1]
- Update to 60.2.0 ESR

[60.1.0-9]
- Do not set user agent (rhbz#1608065)
- GTK dialogs are localized now (rhbz#1619373)
- JNLP association works again (rhbz#1607457)

[60.1.0-8]
- Fixed homepage and bookmarks (rhbz#1606778)
- Fixed missing file associations in RHEL6 (rhbz#1613565)

[60.1.0-7]
- Run at-spi-bus if not running already (for the bundled gtk3)

[60.1.0-6]
- Fix for missing schemes for bundled gtk3

[60.1.0-5]
- Added mesa-libEGL dependency to gtk3/rhel6

Package	Affected Version
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-7.5	< 60.2.0-1.0.1.el7_5

ID

ELSA-2018-2692

Severity

critical

URL

https://linux.oracle.com/errata/ELSA-2018-2692.html

Published

2018-09-12T00:00:00
(6 years ago)

Modified

2018-09-12T00:00:00
(6 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2018-2692	http://linux.oracle.com/errata/ELSA-2018-2692.html
CVE	CVE-2018-12376	http://linux.oracle.com/cve/CVE-2018-12376.html
CVE	CVE-2018-12377	http://linux.oracle.com/cve/CVE-2018-12377.html
CVE	CVE-2018-12378	http://linux.oracle.com/cve/CVE-2018-12378.html
CVE	CVE-2018-12379	http://linux.oracle.com/cve/CVE-2018-12379.html
CVE	CVE-2017-16541	http://linux.oracle.com/cve/CVE-2017-16541.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-7.5	oraclelinux	firefox	< 60.2.0-1.0.1.el7_5	oraclelinux-7.5

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date