[RHSA-2019:0373] firefox security update
Severity
Important
Affected Packages
4
CVEs
2
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 60.5.1 ESR.
Security Fix(es):
chromium-browser, mozilla: Use after free in Skia (CVE-2018-18356)
mozilla: Integer overflow in Skia (CVE-2019-5785)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Package | Affected Version |
---|---|
pkg:rpm/redhat/firefox?arch=x86_64&distro=redhat-6.10 | < 60.5.1-1.el6_10 |
pkg:rpm/redhat/firefox?arch=s390x&distro=redhat-6.10 | < 60.5.1-1.el6_10 |
pkg:rpm/redhat/firefox?arch=ppc64&distro=redhat-6.10 | < 60.5.1-1.el6_10 |
pkg:rpm/redhat/firefox?arch=i686&distro=redhat-6.10 | < 60.5.1-1.el6_10 |
- ID
- RHSA-2019:0373
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2019:0373
- Published
-
2019-02-19T00:00:00
(5 years ago) - Modified
-
2019-02-19T00:00:00
(5 years ago) - Rights
- Copyright 2019 Red Hat, Inc.
- Other Advisories
-
- ALPINE:CVE-2018-18356
- ALPINE:CVE-2019-5785
- ASA-201812-2
- ASA-201902-16
- ASA-201902-23
- DSA-4352-1
- DSA-4391-1
- DSA-4392-1
- ELSA-2019-0373
- ELSA-2019-0374
- FEDORA-2019-348547a32d
- FEDORA-2019-859384e002
- FREEBSD:18211552-F650-4D86-BA4F-E6D5CBFCDBEB
- FREEBSD:546D4DD4-10EA-11E9-B407-080027EF1A23
- GLSA-201903-04
- GLSA-201904-07
- GLSA-201908-18
- MFSA-2019-04
- MFSA-2019-05
- MFSA-2019-06
- openSUSE-SU-2018:4143-1
- openSUSE-SU-2019:0248-1
- openSUSE-SU-2019:0249-1
- openSUSE-SU-2019:0251-1
- openSUSE-SU-2019:1126-1
- openSUSE-SU-2019:1162-1
- RHSA-2018:3803
- RHSA-2019:0374
- RHSA-2019:0680
- RHSA-2019:0681
- RHSA-2019:1144
- SSA:2019-044-01
- SSA:2019-045-01
- SUSE-SU-2019:0469-1
- SUSE-SU-2019:0852-1
- SUSE-SU-2019:0853-1
- SUSE-SU-2019:0871-1
- USN-3896-1
- USN-3897-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1656570 | https://bugzilla.redhat.com/1656570 | |
Bugzilla | 1676991 | https://bugzilla.redhat.com/1676991 | |
RHSA | RHSA-2019:0373 | https://access.redhat.com/errata/RHSA-2019:0373 | |
CVE | CVE-2018-18356 | https://access.redhat.com/security/cve/CVE-2018-18356 | |
CVE | CVE-2019-5785 | https://access.redhat.com/security/cve/CVE-2019-5785 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/firefox?arch=x86_64&distro=redhat-6.10 | redhat | firefox | < 60.5.1-1.el6_10 | redhat-6.10 | x86_64 | |
Affected | pkg:rpm/redhat/firefox?arch=s390x&distro=redhat-6.10 | redhat | firefox | < 60.5.1-1.el6_10 | redhat-6.10 | s390x | |
Affected | pkg:rpm/redhat/firefox?arch=ppc64&distro=redhat-6.10 | redhat | firefox | < 60.5.1-1.el6_10 | redhat-6.10 | ppc64 | |
Affected | pkg:rpm/redhat/firefox?arch=i686&distro=redhat-6.10 | redhat | firefox | < 60.5.1-1.el6_10 | redhat-6.10 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |