1. Home
  2. Security Advisories
  3. Red Hat
  4. RHSA-2017:2456

[RHSA-2017:2456] firefox security update

Severity Critical
Affected Packages 6
CVEs 15
Info Packages References Vulnerabilities

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.3.0 ESR.

Security Fix(es):

  • Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2017-7779, CVE-2017-7798, CVE-2017-7800, CVE-2017-7801, CVE-2017-7753, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7792, CVE-2017-7802, CVE-2017-7807, CVE-2017-7809, CVE-2017-7791, CVE-2017-7803)

Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Mozilla developers and community, Frederik Braun, Looben Yang, Nils, SkyLined, Oliver Wagner, Fraser Tweedale, Mathias Karlsson, Jose María Acuña, and Rhys Enniks as the original reporters.

Package Affected Version
pkg:rpm/redhat/firefox?arch=x86_64&distro=redhat-6.9 < 52.3.0-3.el6_9
pkg:rpm/redhat/firefox?arch=s390x&distro=redhat-6.9 < 52.3.0-3.el6_9
pkg:rpm/redhat/firefox?arch=s390&distro=redhat-6.9 < 52.3.0-3.el6_9
pkg:rpm/redhat/firefox?arch=ppc64&distro=redhat-6.9 < 52.3.0-3.el6_9
pkg:rpm/redhat/firefox?arch=ppc&distro=redhat-6.9 < 52.3.0-3.el6_9
pkg:rpm/redhat/firefox?arch=i686&distro=redhat-6.9 < 52.3.0-3.el6_9
ID
RHSA-2017:2456
Severity
critical
URL
https://access.redhat.com/errata/RHSA-2017:2456
Published
2017-08-10T00:00:00
(7 years ago)
Modified
2017-08-10T00:00:00
(7 years ago)
Rights
Copyright 2017 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1479188 https://bugzilla.redhat.com/1479188
Bugzilla 1479191 https://bugzilla.redhat.com/1479191
Bugzilla 1479201 https://bugzilla.redhat.com/1479201
Bugzilla 1479203 https://bugzilla.redhat.com/1479203
Bugzilla 1479205 https://bugzilla.redhat.com/1479205
Bugzilla 1479206 https://bugzilla.redhat.com/1479206
Bugzilla 1479209 https://bugzilla.redhat.com/1479209
Bugzilla 1479210 https://bugzilla.redhat.com/1479210
Bugzilla 1479213 https://bugzilla.redhat.com/1479213
Bugzilla 1479218 https://bugzilla.redhat.com/1479218
Bugzilla 1479223 https://bugzilla.redhat.com/1479223
Bugzilla 1479224 https://bugzilla.redhat.com/1479224
Bugzilla 1479225 https://bugzilla.redhat.com/1479225
Bugzilla 1479227 https://bugzilla.redhat.com/1479227
Bugzilla 1479650 https://bugzilla.redhat.com/1479650
RHSA RHSA-2017:2456 https://access.redhat.com/errata/RHSA-2017:2456
CVE CVE-2017-7753 https://access.redhat.com/security/cve/CVE-2017-7753
CVE CVE-2017-7779 https://access.redhat.com/security/cve/CVE-2017-7779
CVE CVE-2017-7784 https://access.redhat.com/security/cve/CVE-2017-7784
CVE CVE-2017-7785 https://access.redhat.com/security/cve/CVE-2017-7785
CVE CVE-2017-7786 https://access.redhat.com/security/cve/CVE-2017-7786
CVE CVE-2017-7787 https://access.redhat.com/security/cve/CVE-2017-7787
CVE CVE-2017-7791 https://access.redhat.com/security/cve/CVE-2017-7791
CVE CVE-2017-7792 https://access.redhat.com/security/cve/CVE-2017-7792
CVE CVE-2017-7798 https://access.redhat.com/security/cve/CVE-2017-7798
CVE CVE-2017-7800 https://access.redhat.com/security/cve/CVE-2017-7800
CVE CVE-2017-7801 https://access.redhat.com/security/cve/CVE-2017-7801
CVE CVE-2017-7802 https://access.redhat.com/security/cve/CVE-2017-7802
CVE CVE-2017-7803 https://access.redhat.com/security/cve/CVE-2017-7803
CVE CVE-2017-7807 https://access.redhat.com/security/cve/CVE-2017-7807
CVE CVE-2017-7809 https://access.redhat.com/security/cve/CVE-2017-7809
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/redhat/firefox?arch=x86_64&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 x86_64
Affected pkg:rpm/redhat/firefox?arch=s390x&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 s390x
Affected pkg:rpm/redhat/firefox?arch=s390&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 s390
Affected pkg:rpm/redhat/firefox?arch=ppc64&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 ppc64
Affected pkg:rpm/redhat/firefox?arch=ppc&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 ppc
Affected pkg:rpm/redhat/firefox?arch=i686&distro=redhat-6.9 redhat firefox < 52.3.0-3.el6_9 redhat-6.9 i686
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date