Updated firefox packages fix security vulnerabilities

🗓️ 25 Jan 2018 13:36:49Reported by Gentoo FoundationType

Updated firefox packages fix security vulnerabilities. Flaws in web content processing could crash or execute arbitrary code

Reporter	Title	Published	Views	Family All 308
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 52.6.0-alt1	29 Jan 201800:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package firefox-esr version 52.6.0-alt1	22 Jan 201800:00	–	altlinux
FreeBSD	palemoon -- multiple vulnerabilities	23 Jan 201800:00	–	freebsd
FreeBSD	mozilla -- multiple vulnerabilities	23 Jan 201800:00	–	freebsd
Tenable Nessus	Mozilla Firefox < 58 Multiple Vulnerabilities	21 Aug 201800:00	–	nessus
Tenable Nessus	Mozilla Firefox ESR < 52.6 Multiple Vulnerabilities	21 Aug 201800:00	–	nessus
Tenable Nessus	CentOS 6 / 7 : firefox (CESA-2018:0122)	25 Jan 201800:00	–	nessus
Tenable Nessus	CentOS 6 / 7 : thunderbird (CESA-2018:0262)	2 Feb 201800:00	–	nessus
Tenable Nessus	Debian DLA-1256-1 : firefox-esr security update	25 Jan 201800:00	–	nessus
Tenable Nessus	Debian DLA-1262-1 : thunderbird security update	30 Jan 201800:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	5	any	firefox	52.6.0-1	firefox-52.6.0-1.noarch.rpm
Mageia	5	any	firefox-l10n	52.6.0-1	firefox-l10n-52.6.0-1.noarch.rpm
Mageia	5	any	nspr	4.18-1	nspr-4.18-1.noarch.rpm
Mageia	5	any	nss	3.28.6-1.3	nss-3.28.6-1.3.noarch.rpm
Mageia	5	any	rootcerts	20180104.00-1	rootcerts-20180104.00-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
mozilla	www.mozilla.org/en-US/security/advisories/mfsa2018-01/
mozilla	www.mozilla.org/en-US/security/advisories/mfsa2018-03/
mozilla	www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
access	www.access.redhat.com/errata/RHSA-2018:0122

25 Jan 2018 13:36Current

4Medium risk

Vulners AI Score4

CVSS 27.5

CVSS 39.8

EPSS0.07262