Updated nss, firefox and thunderbird packages fix security vulnerabilities

🗓️ 26 Jul 2014 11:32:13Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 41 Views

Updated packages fix security vulnerabilities in NSS, Firefox, and Thunderbir

Reporter	Title	Published	Views	Family All 251
IBM Security Bulletins	Security Bulletin: Mozilla firefox vulnerability issues on IBM SONAS (CVE-2014-1555, CVE-2014-1556, CVE-2014-1557)	18 Jun 201800:08	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Firefox affect IBM SmartCloud Provisioning 2.1 for Software Virtual Appliance	17 Jun 201822:30	–	ibm
IBM Security Bulletins	Security Bulletin: Six (6) Vulnerabilities in Network Security Services (NSS) & Netscape Portable Runtime (NSPR) affect IBM FlashSystem 840 and V840 (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-1544, CVE-2014-1545)	18 Feb 202301:45	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Network Security Services (NSS) and Netscape Portable Runtime (NSPR) affect IBM SAN Volume Controller and Storwize Family (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-1544, CVE-2014-1545)	20 Aug 202200:54	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storwize V7000 Unified security vulnerabilities related to Mozilla Firefox (CVE-2014-1555, CVE-2014-1556, CVE-2014-1557)	18 Jun 201800:08	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Network Security Services (NSS) and Netscape Portable Runtime (NSPR) affect IBM SAN Volume Controller and Storwize Family (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-1544, CVE-2014-1545)	29 Mar 202301:48	–	ibm
IBM Security Bulletins	Security Bulletin: Six (6) Vulnerabilities in Network Security Services (NSS) & Netscape Portable Runtime (NSPR) affect IBM FlashSystem and TMS RAMSAN 710, 720, 810, and 820 systems (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-154	28 Feb 202301:12	–	ibm
Tenable Nessus	Mozilla Firefox ESR < 24.7 Multiple Vulnerabilities	6 Nov 201900:00	–	nessus
Tenable Nessus	Mozilla Firefox ESR < 24.7 Multiple Vulnerabilities	6 Nov 201900:00	–	nessus
Tenable Nessus	Mozilla Firefox < 31.0 Multiple Vulnerabilities	25 Jul 201400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	3	any	firefox	24.7.0-1	firefox-24.7.0-1.noarch.rpm
Mageia	4	any	firefox	24.7.0-1	firefox-24.7.0-1.noarch.rpm
Mageia	3	any	firefox-l10n	24.7.0-1	firefox-l10n-24.7.0-1.noarch.rpm
Mageia	4	any	firefox-l10n	24.7.0-1	firefox-l10n-24.7.0-1.noarch.rpm
Mageia	3	any	nss	3.16.3-1	nss-3.16.3-1.noarch.rpm
Mageia	4	any	nss	3.16.3-1	nss-3.16.3-1.noarch.rpm
Mageia	3	any	rootcerts	20140703.00-1	rootcerts-20140703.00-1.noarch.rpm
Mageia	4	any	rootcerts	20140703.00-1	rootcerts-20140703.00-1.noarch.rpm
Mageia	3	any	thunderbird	24.7.0-1	thunderbird-24.7.0-1.noarch.rpm
Mageia	4	any	thunderbird	24.7.0-1	thunderbird-24.7.0-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
mozilla	www.mozilla.org/security/announce/2014/mfsa2014-56.html
mozilla	www.mozilla.org/security/announce/2014/mfsa2014-61.html
mozilla	www.mozilla.org/security/announce/2014/mfsa2014-62.html
mozilla	www.mozilla.org/security/announce/2014/mfsa2014-63.html
mozilla	www.mozilla.org/security/announce/2014/mfsa2014-64.html
mozilla	www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
mozilla	www.mozilla.org/security/known-vulnerabilities/thunderbird.html
rhn	www.rhn.redhat.com/errata/RHSA-2014-0919.html
rhn	www.rhn.redhat.com/errata/RHSA-2014-0918.html

26 Jul 2014 11:32Current

9.9High risk

Vulners AI Score9.9

CVSS 210

EPSS0.06109

nss firefox thunderbird security vulnerabilities race condition remote attacker arbitrary code web content cve-2014-1544 cve-2014-1547 cve-2014-1555 nss 3.16.3 firefox 24.7.0