[SUSE-SU-2020:1218-1] Security update for MozillaFirefox
Severity
Important
Affected Packages
42
CVEs
7
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
Update to version 68.8.0 ESR (bsc#1171186):
- CVE-2020-12387: Use-after-free during worker shutdown
- CVE-2020-12388: Sandbox escape with improperly guarded Access Tokens
- CVE-2020-12389: Sandbox escape with improperly separated process types
- CVE-2020-6831: Buffer overflow in SCTP chunk input validation
- CVE-2020-12392: Arbitrary local file access with 'Copy as cURL'
- CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
- CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8
- ID
- SUSE-SU-2020:1218-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2020/suse-su-20201218-1/
- Published
-
2020-05-07T14:55:35
(4 years ago) - Modified
-
2020-05-07T14:55:35
(4 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS2-2020-1429
-
ALPINE:CVE-2020-12387
-
ALPINE:CVE-2020-12388
-
ALPINE:CVE-2020-12389
-
ALPINE:CVE-2020-12392
-
ALPINE:CVE-2020-12393
-
ALPINE:CVE-2020-12395
-
ALPINE:CVE-2020-6831
-
ASA-202005-2
-
ASA-202005-3
-
ASA-202005-7
-
DSA-4678-1
-
DSA-4683-1
-
DSA-4714-1
-
ELSA-2020-2031
-
ELSA-2020-2036
-
ELSA-2020-2037
-
ELSA-2020-2046
-
ELSA-2020-2049
-
ELSA-2020-2050
-
GLSA-202005-03
-
GLSA-202005-04
-
MFSA-2020-16
-
MFSA-2020-17
-
MFSA-2020-18
-
openSUSE-SU-2020:0620-1
-
openSUSE-SU-2020:0621-1
-
openSUSE-SU-2020:0643-1
-
openSUSE-SU-2020:0648-1
-
openSUSE-SU-2020:0709-1
-
openSUSE-SU-2020:0917-1
-
RHSA-2020:2031
-
RHSA-2020:2036
-
RHSA-2020:2037
-
RHSA-2020:2046
-
RHSA-2020:2049
-
RHSA-2020:2050
-
RHSA-2020:2064
-
SSA:2020-126-01
-
SUSE-SU-2020:1209-1
-
SUSE-SU-2020:1225-1
-
USN-4353-1
-
USN-4373-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=5 | suse |
 MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=3 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=x86_64&distro=sles-12&sp=1 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=3 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=2 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=s390x&distro=sles-12&sp=1 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=3 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=2 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=ppc64le&distro=sles-12&sp=1 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=5 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=4 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox?arch=aarch64&distro=sles-12&sp=3 | suse |
MozillaFirefox
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=3 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=x86_64&distro=sles-12&sp=1 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=3 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=2 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=s390x&distro=sles-12&sp=1 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=3 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=2 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=ppc64le&distro=sles-12&sp=1 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=5 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=4 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-translations-common?arch=aarch64&distro=sles-12&sp=3 | suse |
MozillaFirefox-translations-common
|
< 68.8.0-109.119.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=2 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=x86_64&distro=sles-12&sp=1 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=2 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=s390x&distro=sles-12&sp=1 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=2 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/MozillaFirefox-devel?arch=ppc64le&distro=sles-12&sp=1 | suse |
MozillaFirefox-devel
|
< 68.8.0-109.119.1 | sles-12 | ppc64le |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |