[SUSE-SU-2019:1684-1] Security update for MozillaFirefox
Severity
Important
Affected Packages
47
CVEs
1
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
Mozilla Firefox Firefox 60.7.2
MFSA 2019-19 (bsc#1138872)CVE-2019-11708: Fix sandbox escape using Prompt:Open.
- Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes could result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer.
- ID
- SUSE-SU-2019:1684-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20191684-1/
- Published
-
2019-06-22T15:35:41
(5 years ago) - Modified
-
2019-06-22T15:35:41
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2019-1250
- ALPINE:CVE-2019-11708
- ASA-201906-20
- CISA-2022:0523
- DSA-4471-1
- DSA-4474-1
- ELSA-2019-1603
- ELSA-2019-1604
- ELSA-2019-1623
- ELSA-2019-1624
- ELSA-2019-1626
- ELSA-2019-1696
- FEDORA-2019-1ae01e6688
- FEDORA-2019-53e4772bb8
- FEDORA-2019-c2ff49ef73
- FREEBSD:39BC2294-FF32-4972-9ECB-B9F40B4CCB74
- FREEBSD:49BEB00F-A6E1-4A42-93DF-9CB14B4C2BEE
- GLSA-201908-12
- MFSA-2019-19
- MFSA-2019-20
- openSUSE-SU-2019:1595-1
- openSUSE-SU-2019:1606-1
- openSUSE-SU-2019:1664-1
- RHSA-2019:1603
- RHSA-2019:1604
- RHSA-2019:1623
- RHSA-2019:1624
- RHSA-2019:1626
- RHSA-2019:1696
- SSA:2019-172-01
- SUSE-SU-2019:1682-1
- SUSE-SU-2019:1683-1
- USN-4032-1
- USN-4045-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1684-1.json | |
Suse | URL for SUSE-SU-2019:1684-1 | https://www.suse.com/support/update/announcement/2019/suse-su-20191684-1/ | |
Suse | E-Mail link for SUSE-SU-2019:1684-1 | https://lists.suse.com/pipermail/sle-security-updates/2019-June/005624.html | |
Bugzilla | SUSE Bug 1138872 | https://bugzilla.suse.com/1138872 | |
CVE | SUSE CVE CVE-2019-11708 page | https://www.suse.com/security/cve/CVE-2019-11708/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sled-12&sp=4 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sled-12&sp=3 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.7.2-109.80.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sled-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sled-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.7.2-109.80.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12 | suse | MozillaFirefox-devel | < 60.7.2-109.80.1 | sles-12 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |