Updated firefox packages fix security vulnerability: Security researcher Cody Crews reported on a way to violate the same origin policy and inject script into a non-privileged part of the built-in PDF Viewer in Firefox. This would allow an attacker to read and steal sensitive local files on the victim’s computer (CVE-2015-4495).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | firefox | < 38.1.1-1 | firefox-38.1.1-1.mga4 |
Mageia | 4 | noarch | firefox-l10n | < 38.1.1-1 | firefox-l10n-38.1.1-1.mga4 |
Mageia | 5 | noarch | firefox | < 38.1.1-1 | firefox-38.1.1-1.mga5 |
Mageia | 5 | noarch | firefox-l10n | < 38.1.1-1 | firefox-l10n-38.1.1-1.mga5 |