[SUSE-SU-2018:0907-1] Security update for MozillaFirefox
Severity
Moderate
Affected Packages
16
CVEs
10
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
Security issues fixed in Firefox ESR 52.7.3 (bsc#1085130):
- CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7
- CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList
- CVE-2018-5129: Out-of-bounds write with malformed IPC messages
- CVE-2018-5130: Mismatched RTP payload type can trigger memory corruption
- CVE-2018-5131: Fetch API improperly returns cached copies of no-store/no-cache resources
- CVE-2018-5144: Integer overflow during Unicode conversion
- CVE-2018-5145: Memory safety bugs fixed in Firefox ESR 52.7
- CVE-2018-5146: Out of bounds memory write in libvorbis (bsc#1085671)
- CVE-2018-5147: Out of bounds memory write in libtremor (bsc#1085671)
- CVE-2018-5148: Use-after-free in compositor (MFSA 2018-10) (bsc#1087059)
- ID
- SUSE-SU-2018:0907-1
- Severity
- moderate
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20180907-1/
- Published
-
2018-04-10T08:27:08
(6 years ago) - Modified
-
2018-04-10T08:27:08
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2018-981
-
ALAS2-2018-981
-
ALPINE:CVE-2018-5146
-
ASA-201803-12
-
ASA-201803-13
-
ASA-201803-21
-
ASA-201803-22
-
DSA-4139-1
-
DSA-4140-1
-
DSA-4141-1
-
DSA-4143-1
-
DSA-4153-1
-
DSA-4155-1
-
ELSA-2018-0526
-
ELSA-2018-0527
-
ELSA-2018-0549
-
ELSA-2018-0647
-
ELSA-2018-0648
-
ELSA-2018-0649
-
ELSA-2018-1058
-
ELSA-2018-1098
-
ELSA-2018-1099
-
FEDORA-2018-061bafe369
-
FEDORA-2018-3de9cb411f
-
FEDORA-2018-def329f680
-
FEDORA-2018-f26d891469
-
FEDORA-2019-2e385f97e2
-
FREEBSD:23F59689-0152-42D3-9ADE-1658D6380567
-
FREEBSD:7943794F-707F-4E31-9FEA-3BBF1DDCEDC1
-
FREEBSD:C71CDC95-3C18-45B7-866A-AF28B59AABB5
-
GLSA-201810-01
-
GLSA-201811-13
-
MFSA-2018-06
-
MFSA-2018-07
-
MFSA-2018-08
-
MFSA-2018-09
-
MFSA-2018-10
-
openSUSE-SU-2018:0818-1
-
openSUSE-SU-2018:0819-1
-
RHSA-2018:0526
-
RHSA-2018:0527
-
RHSA-2018:0549
-
RHSA-2018:0647
-
RHSA-2018:0648
-
RHSA-2018:0649
-
RHSA-2018:1058
-
RHSA-2018:1098
-
RHSA-2018:1099
-
SSA:2018-076-01
-
SUSE-SU-2018:0783-1
-
SUSE-SU-2018:0784-1
-
SUSE-SU-2018:0850-1
-
USN-3545-1
-
USN-3596-1
-
USN-3599-1
-
USN-3604-1
-
USN-3609-1
-
USN-3688-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-11&sp=4 | suse |
 MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-11&sp=3 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-11&sp=4 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-11&sp=3 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64&distro=sles-11&sp=4 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | ppc64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ia64&distro=sles-11&sp=4 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | ia64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=i586&distro=sles-11&sp=4 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | i586 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=i586&distro=sles-11&sp=3 | suse |
MozillaFirefox
|
< 52.7.3esr-72.27.2 | sles-11 | i586 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=x86_64&distro=sles-11&sp=4 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=x86_64&distro=sles-11&sp=3 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=s390x&distro=sles-11&sp=4 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=s390x&distro=sles-11&sp=3 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=ppc64&distro=sles-11&sp=4 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | ppc64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=ia64&distro=sles-11&sp=4 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | ia64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=i586&distro=sles-11&sp=4 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | i586 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations?arch=i586&distro=sles-11&sp=3 | suse |
MozillaFirefox-translations
|
< 52.7.3esr-72.27.2 | sles-11 | i586 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |