[SUSE-SU-2019:2436-1] Security update for MozillaFirefox
Severity
Important
Affected Packages
44
CVEs
8
Security update for MozillaFirefox
This update for MozillaFirefox to ESR 60.9 fixes the following issues:
Security issues fixed:
- CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. (bsc#1149303)
- CVE-2019-11746: Fixed a use-after-free while manipulating video. (bsc#1149297)
- CVE-2019-11744: Fixed an XSS caused by breaking out of title and textarea elements using innerHTML. (bsc#1149304)
- CVE-2019-11753: Fixed a privilege escalation with Mozilla Maintenance Service in custom Firefox installation location. (bsc#1149295)
- CVE-2019-11752: Fixed a use-after-free while extracting a key value in IndexedDB. (bsc#1149296)
- CVE-2019-11743: Fixed a timing side-channel attack on cross-origin information, utilizing unload event attributes. (bsc#1149298)
- CVE-2019-11740: Fixed several memory safety bugs. (bsc#1149299)
- ID
- SUSE-SU-2019:2436-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20192436-1/
- Published
-
2019-09-23T12:38:35
(5 years ago) - Modified
-
2019-09-23T12:38:35
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2019-1304
- ALPINE:CVE-2019-11740
- ALPINE:CVE-2019-11742
- ALPINE:CVE-2019-11743
- ALPINE:CVE-2019-11744
- ALPINE:CVE-2019-11746
- ALPINE:CVE-2019-11752
- ALPINE:CVE-2019-9812
- ASA-201909-2
- DSA-4516-1
- DSA-4523-1
- ELSA-2019-2663
- ELSA-2019-2694
- ELSA-2019-2729
- ELSA-2019-2773
- ELSA-2019-2774
- ELSA-2019-2807
- FREEBSD:05463E0A-ABD3-4FA4-BD5F-CD5ED132D4C6
- GLSA-201911-07
- MFSA-2019-25
- MFSA-2019-26
- MFSA-2019-27
- MFSA-2019-29
- MFSA-2019-30
- openSUSE-SU-2019:2248-1
- openSUSE-SU-2019:2249-1
- openSUSE-SU-2019:2251-1
- openSUSE-SU-2019:2260-1
- RHSA-2019:2663
- RHSA-2019:2694
- RHSA-2019:2729
- RHSA-2019:2773
- RHSA-2019:2774
- RHSA-2019:2807
- SUSE-SU-2019:2515-1
- SUSE-SU-2019:2545-1
- SUSE-SU-2019:2620-1
- USN-4122-1
- USN-4150-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=5 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sled-12&sp=4 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=5 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=5 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=5 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=4 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=3 | suse | MozillaFirefox | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=5 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sled-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=5 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=5 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=5 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=4 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=3 | suse | MozillaFirefox-translations-common | < 60.9.0-109.86.1 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=2 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=1 | suse | MozillaFirefox-devel | < 60.9.0-109.86.1 | sles-12 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |