Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2014-2020 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2243-1.NASL
HistoryJun 12, 2014 - 12:00 a.m.

Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2243-1)

2014-06-1200:00:00
Ubuntu Security Notice (C) 2014-2020 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

Gary Kwong, Christoph Diehl, Christian Holler, Hannes Verschore, Jan de Mooij, Ryan VanderMeulen, Jeff Walden, Kyle Huey, Jesse Ruderman, Gregor Wagner, Benoit Jacob and Karl Tomlinson discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox.
(CVE-2014-1533, CVE-2014-1534)

Abhishek Arya discovered multiple use-after-free and out-of-bounds read issues in Firefox. An attacker could potentially exploit these to cause a denial of service via application crash or execute arbitrary code with the priviliges of the user invoking Firefox. (CVE-2014-1536, CVE-2014-1537, CVE-2014-1538)

Tyson Smith and Jesse Schwartzentruber discovered a use-after-free in the event listener manager. An attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the priviliges of the user invoking Firefox.
(CVE-2014-1540)

A use-after-free was discovered in the SMIL animation controller. An attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the priviliges of the user invoking Firefox. (CVE-2014-1541)

Holger Fuhrmannek discovered a buffer overflow in Web Audio. An attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the priviliges of the user invoking Firefox. (CVE-2014-1542).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2243-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74493);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");

  script_cve_id(
    "CVE-2014-1533",
    "CVE-2014-1534",
    "CVE-2014-1536",
    "CVE-2014-1537",
    "CVE-2014-1538",
    "CVE-2014-1540",
    "CVE-2014-1541",
    "CVE-2014-1542"
  );
  script_bugtraq_id(
    67964,
    67966,
    67968,
    67971,
    67978
  );
  script_xref(name:"USN", value:"2243-1");

  script_name(english:"Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2243-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"Gary Kwong, Christoph Diehl, Christian Holler, Hannes Verschore, Jan
de Mooij, Ryan VanderMeulen, Jeff Walden, Kyle Huey, Jesse Ruderman,
Gregor Wagner, Benoit Jacob and Karl Tomlinson discovered multiple
memory safety issues in Firefox. If a user were tricked in to opening
a specially crafted website, an attacker could potentially exploit
these to cause a denial of service via application crash, or execute
arbitrary code with the privileges of the user invoking Firefox.
(CVE-2014-1533, CVE-2014-1534)

Abhishek Arya discovered multiple use-after-free and out-of-bounds
read issues in Firefox. An attacker could potentially exploit these to
cause a denial of service via application crash or execute arbitrary
code with the priviliges of the user invoking Firefox. (CVE-2014-1536,
CVE-2014-1537, CVE-2014-1538)

Tyson Smith and Jesse Schwartzentruber discovered a use-after-free in
the event listener manager. An attacker could potentially exploit this
to cause a denial of service via application crash or execute
arbitrary code with the priviliges of the user invoking Firefox.
(CVE-2014-1540)

A use-after-free was discovered in the SMIL animation controller. An
attacker could potentially exploit this to cause a denial of service
via application crash or execute arbitrary code with the priviliges of
the user invoking Firefox. (CVE-2014-1541)

Holger Fuhrmannek discovered a buffer overflow in Web Audio. An
attacker could potentially exploit this to cause a denial of service
via application crash or execute arbitrary code with the priviliges of
the user invoking Firefox. (CVE-2014-1542).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2243-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-1541");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/06/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/06/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/12");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-globalmenu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-testsuite");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2014-2020 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '14.04', 'pkgname': 'firefox', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-dev', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-globalmenu', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-af', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-an', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-as', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-be', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-br', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-da', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-de', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-el', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-en', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-es', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-et', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-he', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-id', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-is', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-it', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-km', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-or', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-si', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-te', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-th', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'},
    {'osver': '14.04', 'pkgname': 'firefox-testsuite', 'pkgver': '30.0+build1-0ubuntu0.14.04.3'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'firefox / firefox-dev / firefox-globalmenu / firefox-locale-af / etc');
}
VendorProductVersionCPE
canonicalubuntu_linuxfirefoxp-cpe:/a:canonical:ubuntu_linux:firefox
canonicalubuntu_linuxfirefox-devp-cpe:/a:canonical:ubuntu_linux:firefox-dev
canonicalubuntu_linuxfirefox-globalmenup-cpe:/a:canonical:ubuntu_linux:firefox-globalmenu
canonicalubuntu_linuxfirefox-locale-afp-cpe:/a:canonical:ubuntu_linux:firefox-locale-af
canonicalubuntu_linuxfirefox-locale-anp-cpe:/a:canonical:ubuntu_linux:firefox-locale-an
canonicalubuntu_linuxfirefox-locale-arp-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar
canonicalubuntu_linuxfirefox-locale-asp-cpe:/a:canonical:ubuntu_linux:firefox-locale-as
canonicalubuntu_linuxfirefox-locale-astp-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast
canonicalubuntu_linuxfirefox-locale-bep-cpe:/a:canonical:ubuntu_linux:firefox-locale-be
canonicalubuntu_linuxfirefox-locale-bgp-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg
Rows per page:
1-10 of 881

Related

openvas 37
ubuntu 2
nessus 27
suse 6
securityvulns 2
freebsd 1
veracode 3
mageia 2
centos 2
mozilla 5
redhat 2
oraclelinux 2
osv 2
debian 2
prion 8
cve 8
ubuntucve 8
ibm 2
gentoo 1
openvas
openvas
Ubuntu: Security Advisory (USN-2243-1)
2014-06-17 00:00:00
Mozilla Firefox Multiple Vulnerabilities-01 (Jul 2014) - Windows
2014-07-01 00:00:00
Mozilla Firefox Multiple Vulnerabilities-01 (Jul 2014) - Mac OS X
2014-07-01 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2014-06-11 00:00:00
Thunderbird vulnerabilities
2014-06-19 00:00:00
nessus
nessus
Firefox < 30.0 Multiple Vulnerabilities
2014-06-11 00:00:00
Mozilla Thunderbird < 24.6 Multiple Vulnerabilities
2014-06-11 00:00:00
Firefox < 30.0 Multiple Vulnerabilities (Mac OS X)
2014-06-11 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2014-06-23 20:09:15
Mozilla updates 2014/06 (critical)
2014-06-16 08:04:13
Security update for MozillaFirefox (important)
2014-06-21 01:04:47
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-06-13 00:00:00
ESA-2015-002: Unisphere Central Security Update for Multiple Vulnerabilities
2015-02-02 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-06-10 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:58:34
Use-After-Free
2019-05-02 04:58:34
Remote Code Execution (RCE)
2019-01-15 08:53:46
mageia
mageia
Updated firefox & thunderbird packages fix multiple security vulnerabilities
2014-06-11 21:13:59
Updated iceape package fixes security vulnerabilities
2014-10-23 17:27:57
centos
centos
firefox security update
2014-06-11 10:49:01
thunderbird security update
2014-06-11 10:54:29
mozilla
mozilla
Use-after-free and out of bounds issues found using Address Sanitizer — Mozilla
2014-06-10 00:00:00
Miscellaneous memory safety hazards (rv:30.0 / rv:24.6) — Mozilla
2014-06-10 00:00:00
Buffer overflow in Web Audio Speex resampler — Mozilla
2014-06-10 00:00:00
redhat
redhat
(RHSA-2014:0741) Critical: firefox security update
2014-06-10 00:00:00
(RHSA-2014:0742) Important: thunderbird security update
2014-06-10 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2014-06-10 00:00:00
firefox security update
2014-06-10 00:00:00
osv
osv
iceweasel - security update
2014-06-11 00:00:00
icedove - security update
2014-06-16 00:00:00
debian
debian
[SECURITY] [DSA 2955-1] iceweasel security update
2014-06-11 14:33:41
[SECURITY] [DSA 2960-1] icedove security update
2014-06-16 17:13:24
prion
prion
Buffer overflow
2014-06-11 10:57:00
Design/Logic Flaw
2014-06-11 10:57:00
Out-of-bounds
2014-06-11 10:57:00
cve
cve
CVE-2014-1542
2014-06-11 10:57:00
CVE-2014-1536
2014-06-11 10:57:00
CVE-2014-1540
2014-06-11 10:57:00
ubuntucve
ubuntucve
CVE-2014-1540
2014-06-11 00:00:00
CVE-2014-1542
2014-06-11 00:00:00
CVE-2014-1536
2014-06-11 00:00:00
ibm
ibm
Security Bulletin: Mozilla firefox vulnerability issues on IBM SONAS (CVE-2014-1518, CVE-2014-1523, CVE-2014-1524, CVE-2014-1529, CVE-2014-1530, CVE-2014-1531, CVE-2014-1532, CVE-2014-1533, CVE-2014-1538, CVE-2014-1541)
2018-06-18 00:08:33
Security Bulletin: IBM Storwize V7000 Unified security vulnerabilities related to Mozilla Firefox (CVE-2014-1518, CVE-2014-1523, CVE-2014-1524, CVE-2014-1529, CVE-2014-1530, CVE-2014-1531, CVE-2014-1532, CVE-2014-1533, CVE-2014-1538, CVE-2014-1541)
2018-06-18 00:08:28
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
JSON
Related for UBUNTU_USN-2243-1.NASL
openvas37ubuntu2nessus27suse6securityvulns2freebsd1veracode3mageia2centos2mozilla5redhat2oraclelinux2osv2debian2prion8cve8ubuntucve8ibm2gentoo1