Lucene search
This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2016-2780.NASLHistoryNov 16, 2016 - 12:00 a.m.
RHEL 5 / 6 / 7 : firefox (RHSA-2016:2780)
2016-11-1600:00:00
This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 45.5.0 ESR.
Security Fix(es) :
-
Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5296, CVE-2016-5297, CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)
-
A flaw was found in the way Add-on update process was handled by Firefox. A Man-in-the-Middle attacker could use this flaw to install a malicious signed add-on update. (CVE-2016-9064)
Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel Gross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as the original reporters.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:2780. The text
# itself is copyright (C) Red Hat, Inc.
#
include("compat.inc");
if (description)
{
script_id(94920);
script_version("2.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2020/05/29");
script_cve_id("CVE-2016-5290", "CVE-2016-5291", "CVE-2016-5296", "CVE-2016-5297", "CVE-2016-9064", "CVE-2016-9066");
script_xref(name:"RHSA", value:"2016:2780");
script_name(english:"RHEL 5 / 6 / 7 : firefox (RHSA-2016:2780)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"An update for firefox is now available for Red Hat Enterprise Linux 5,
Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security
impact of Critical. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 45.5.0 ESR.
Security Fix(es) :
* Multiple flaws were found in the processing of malformed web
content. A web page containing malicious content could cause Firefox
to crash or, potentially, execute arbitrary code with the privileges
of the user running Firefox. (CVE-2016-5296, CVE-2016-5297,
CVE-2016-9066, CVE-2016-5291, CVE-2016-5290)
* A flaw was found in the way Add-on update process was handled by
Firefox. A Man-in-the-Middle attacker could use this flaw to install a
malicious signed add-on update. (CVE-2016-9064)
Red Hat would like to thank the Mozilla project for reporting these
issues. Upstream acknowledges Abhishek Arya, Andre Bargull, Samuel
Gross, Yuyang Zhou, Olli Pettay, Christian Holler, Ehsan Akhgari, Jon
Coppeard, Gary Kwong, Tooru Fujisawa, Philipp, and Randell Jesup as
the original reporters."
);
# https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/#
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?8b5eaff4"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2016:2780"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-9064"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-9066"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-5296"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-5297"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-5290"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-5291"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected firefox and / or firefox-debuginfo packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:firefox");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:firefox-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.4");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.5");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.6");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.7");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/06/11");
script_set_attribute(attribute:"patch_publication_date", value:"2016/11/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/16");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^(5|6|7)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 5.x / 6.x / 7.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2016:2780";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL5", reference:"firefox-45.5.0-1.el5_11", allowmaj:TRUE)) flag++;
if (rpm_check(release:"RHEL5", reference:"firefox-debuginfo-45.5.0-1.el5_11", allowmaj:TRUE)) flag++;
if (rpm_check(release:"RHEL6", reference:"firefox-45.5.0-1.el6_8", allowmaj:TRUE)) flag++;
if (rpm_check(release:"RHEL6", reference:"firefox-debuginfo-45.5.0-1.el6_8", allowmaj:TRUE)) flag++;
if (rpm_check(release:"RHEL7", reference:"firefox-45.5.0-1.el7_3", allowmaj:TRUE)) flag++;
if (rpm_check(release:"RHEL7", reference:"firefox-debuginfo-45.5.0-1.el7_3", allowmaj:TRUE)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "firefox / firefox-debuginfo");
}
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | firefox | p-cpe:/a:redhat:enterprise_linux:firefox |
| redhat | enterprise_linux | firefox-debuginfo | p-cpe:/a:redhat:enterprise_linux:firefox-debuginfo |
| redhat | enterprise_linux | 5 | cpe:/o:redhat:enterprise_linux:5 |
| redhat | enterprise_linux | 6 | cpe:/o:redhat:enterprise_linux:6 |
| redhat | enterprise_linux | 7 | cpe:/o:redhat:enterprise_linux:7 |
| redhat | enterprise_linux | 7.3 | cpe:/o:redhat:enterprise_linux:7.3 |
| redhat | enterprise_linux | 7.4 | cpe:/o:redhat:enterprise_linux:7.4 |
| redhat | enterprise_linux | 7.5 | cpe:/o:redhat:enterprise_linux:7.5 |
| redhat | enterprise_linux | 7.6 | cpe:/o:redhat:enterprise_linux:7.6 |
| redhat | enterprise_linux | 7.7 | cpe:/o:redhat:enterprise_linux:7.7 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5290
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5291
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5296
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5297
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9064
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9066
www.nessus.org/u?8b5eaff4
access.redhat.com/errata/RHSA-2016:2780
access.redhat.com/security/cve/cve-2016-5290
access.redhat.com/security/cve/cve-2016-5291
access.redhat.com/security/cve/cve-2016-5296
access.redhat.com/security/cve/cve-2016-5297
access.redhat.com/security/cve/cve-2016-9064
access.redhat.com/security/cve/cve-2016-9066
Related
nessus
nessus
Oracle Linux 5 / 6 / 7 : firefox (ELSA-2016-2780)
2016-11-17 00:00:00
Debian DLA-730-1 : firefox-esr security update
2016-12-02 00:00:00
EulerOS 2.0 SP1 : firefox (EulerOS-SA-2016-1085)
2017-05-01 00:00:00
centos
centos
firefox security update
2016-11-19 11:43:55
thunderbird security update
2016-12-01 15:29:44
redhat
redhat
(RHSA-2016:2780) Critical: firefox security update
2016-11-16 00:00:00
(RHSA-2016:2825) Important: thunderbird security update
2016-11-29 00:00:00
openvas
openvas
CentOS Update for firefox CESA-2016:2780 centos6
2016-11-20 00:00:00
CentOS Update for firefox CESA-2016:2780 centos5
2016-11-20 00:00:00
Huawei EulerOS: Security Advisory for firefox (EulerOS-SA-2016-1085)
2020-01-23 00:00:00
oraclelinux
oraclelinux
firefox security update
2016-11-16 00:00:00
thunderbird security update
2016-11-29 00:00:00
debian
debian
[SECURITY] [DLA 730-1] firefox-esr security update
2016-12-01 21:45:13
[SECURITY] [DSA 3716-1] firefox-esr security update
2016-11-16 21:27:57
[SECURITY] [DSA 3730-1] icedove security update
2016-12-11 16:05:42
osv
osv
firefox-esr - security update
2016-12-01 00:00:00
icedove - security update
2016-12-17 00:00:00
mageia
mageia
Updated nss and firefox packages fix security vulnerabilities
2016-11-17 17:10:52
Updated thunderbird packages fix security vulnerabilities
2016-12-06 00:49:27
Updated iceape packages fix security vulnerabilities
2017-09-02 00:10:29
suse
suse
Security update for MozillaThunderbird (important)
2016-12-06 13:07:20
Security update for MozillaFirefox, mozilla-nss (important)
2016-12-05 21:07:10
Security update for MozillaFirefox, mozilla-nss (important)
2016-12-10 23:09:49
ibm
ibm
ubuntu
ubuntu
Thunderbird vulnerabilities
2016-12-01 00:00:00
Firefox vulnerabilities
2016-11-19 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox ESR 45.5 — Mozilla
2016-11-15 00:00:00
Security vulnerabilities fixed in Thunderbird 45.5 — Mozilla
2016-11-18 00:00:00
Security vulnerabilities fixed in Firefox 50 — Mozilla
2016-11-15 00:00:00
archlinux
archlinux
[ASA-201611-16] firefox: multiple issues
2016-11-16 00:00:00
ubuntucve
ubuntucve
cve
cve
debiancve
debiancve
redhatcve
redhatcve
prion
prion
Code injection
2018-06-11 21:29:00
Integer overflow
2018-06-11 21:29:00
Buffer overflow
2018-06-11 21:29:00
veracode
veracode
Certificate Validation Bypas
2019-05-02 06:02:31
Denial Of Service (DoS)
2019-01-15 09:14:49
Denial Of Service (DoS)
2019-05-02 06:02:31
myhack58
myhack58
seebug
seebug
kaspersky
kaspersky
KLA11272 Multiple vulnerabilities in Mozilla Firefox
2016-11-15 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2016-11-15 00:00:00
gentoo
gentoo
Mozilla Firefox, Thunderbird: Multiple vulnerabilities
2017-01-03 00:00:00
Related for REDHAT-RHSA-2016-2780.NASL