Lucene search

K
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/77C9A63554B280C9284DAE7A0BD5A3C8
HistoryApr 21, 2021 - 12:00 a.m.

Security fix for the ALT Linux 10 package firefox-esr version 78.10.0-alt1

2021-04-2100:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
23
alt linux 10
firefox-esr
security fixes
cve-2021-23994
cve-2021-23995
cve-2021-23998
cve-2021-23961
cve-2021-23999
cve-2021-24002
cve-2021-29945
cve-2021-29946.

EPSS

0.009

Percentile

82.4%

April 21, 2021 Andrey Cherepanov 78.10.0-alt1

- New version (78.10.0).
- Security fixes:
  + CVE-2021-23994 Out of bound write due to lazy initialization
  + CVE-2021-23995 Use-after-free in Responsive Design Mode
  + CVE-2021-23998 Secure Lock icon could have been spoofed
  + CVE-2021-23961 More internal network hosts could have been probed by a malicious webpage
  + CVE-2021-23999 Blob URLs may have been granted additional privileges
  + CVE-2021-24002 Arbitrary FTP command execution on FTP servers using an encoded URL
  + CVE-2021-29945 Incorrect size computation in WebAssembly JIT could lead to null-reads
  + CVE-2021-29946 Port blocking could be bypassed