Ubuntu 14.04 Firefox regressions fi
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
Tenable Nessus | Ubuntu 14.04 LTS : Firefox regressions (USN-2917-3) | 20 Apr 201600:00 | – | nessus |
Tenable Nessus | EulerOS 2.0 SP1 : firefox (EulerOS-SA-2016-1002) | 1 May 201700:00 | – | nessus |
Tenable Nessus | Firefox ESR < 38.7 Multiple Vulnerabilities | 11 Mar 201600:00 | – | nessus |
Tenable Nessus | Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2917-1) | 10 Mar 201600:00 | – | nessus |
Tenable Nessus | Debian DSA-3510-1 : iceweasel - security update | 10 Mar 201600:00 | – | nessus |
Tenable Nessus | CentOS 5 / 6 / 7 : thunderbird (CESA-2016:0460) | 17 Mar 201600:00 | – | nessus |
Tenable Nessus | RHEL 5 / 6 / 7 : thunderbird (RHSA-2016:0460) | 17 Mar 201600:00 | – | nessus |
Tenable Nessus | Oracle Linux 5 / 6 / 7 : thunderbird (ELSA-2016-0460) | 17 Mar 201600:00 | – | nessus |
Tenable Nessus | SUSE SLES10 Security Update : MozillaFirefox (SUSE-SU-2016:0820-1) | 21 Mar 201600:00 | – | nessus |
Tenable Nessus | Ubuntu 14.04 LTS / 16.04 LTS : Thunderbird vulnerabilities (USN-2934-1) | 2 May 201600:00 | – | nessus |
Source | Link |
---|---|
ubuntu | www.ubuntu.com/security/notices/USN-2917-2 |
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2917-2. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(90421);
script_version("2.15");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/27");
script_xref(name:"USN", value:"2917-2");
script_name(english:"Ubuntu 14.04 LTS : Firefox regressions (USN-2917-2)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the
USN-2917-2 advisory.
USN-2917-1 fixed vulnerabilities in Firefox. This update caused several regressions that could result in
search engine settings being lost, the list of search providers appearing empty or the location bar
breaking after typing an invalid URL. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Francis Gabriel discovered a buffer overflow during ASN.1 decoding in NSS.
If a user were tricked in to opening a specially crafted website, an
attacker could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2016-1950)
Bob Clary, Christoph Diehl, Christian Holler, Andrew McCreight, Daniel
Holbert, Jesse Ruderman, Randell Jesup, Carsten Book, Gian-Carlo Pascutto,
Tyson Smith, Andrea Marchesini, and Jukka Jylnki discovered multiple
memory safety issues in Firefox. If a user were tricked in to opening a
specially crafted website, an attacker could potentially exploit these to
cause a denial of service via application crash, or execute arbitrary code
with the privileges of the user invoking Firefox. (CVE-2016-1952,
CVE-2016-1953)
Nicolas Golubovic discovered that CSP violation reports can be used to
overwrite local files. If a user were tricked in to opening a specially
crafted website with addon signing disabled and unpacked addons installed,
an attacker could potentially exploit this to gain additional privileges.
(CVE-2016-1954)
Muneaki Nishimura discovered that CSP violation reports contained full
paths for cross-origin iframe navigations. An attacker could potentially
exploit this to steal confidential data. (CVE-2016-1955)
Ucha Gobejishvili discovered that performing certain WebGL operations
resulted in memory resource exhaustion with some Intel GPUs, requiring
a reboot. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial
of service. (CVE-2016-1956)
Jose Martinez and Romina Santillan discovered a memory leak in
libstagefright during MPEG4 video file processing in some circumstances.
If a user were tricked in to opening a specially crafted website, an
attacker could potentially exploit this to cause a denial of service via
memory exhaustion. (CVE-2016-1957)
Abdulrahman Alqabandi discovered that the addressbar could be blank or
filled with page defined content in some circumstances. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit this to conduct URL spoofing attacks. (CVE-2016-1958)
Looben Yang discovered an out-of-bounds read in Service Worker Manager. If
a user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2016-1959)
A use-after-free was discovered in the HTML5 string parser. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit this to cause a denial of service via application
crash, or execute arbitrary code with the privileges of the user invoking
Firefox. (CVE-2016-1960)
A use-after-free was discovered in the SetBody function of HTMLDocument.
If a user were tricked in to opening a specially crafted website, an
attacker could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2016-1961)
Dominique Hazal-Massieux discovered a use-after-free when using multiple
WebRTC data channels. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit this to cause a
denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking Firefox. (CVE-2016-1962)
It was discovered that Firefox crashes when local files are modified
whilst being read by the FileReader API. If a user were tricked in to
opening a specially crafted website, an attacker could potentially exploit
this to execute arbitrary code with the privileges of the user invoking
Firefox. (CVE-2016-1963)
Nicolas Grgoire discovered a use-after-free during XML transformations.
If a user were tricked in to opening a specially crafted website, an
attacker could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2016-1964)
Tsubasa Iinuma discovered a mechanism to cause the addressbar to display
an incorrect URL, using history navigations and the Location protocol
property. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to conduct URL
spoofing attacks. (CVE-2016-1965)
A memory corruption issues was discovered in the NPAPI subsystem. If
a user were tricked in to opening a specially crafted website with a
malicious plugin installed, an attacker could potentially exploit this
to cause a denial of service via application crash, or execute arbitrary
code with the privileges of the user invoking Firefox. (CVE-2016-1966)
Jordi Chancel discovered a same-origin-policy bypass when using
performance.getEntries and history navigation with session restore. If
a user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to steal confidential data. (CVE-2016-1967)
Luke Li discovered a buffer overflow during Brotli decompression in some
circumstances. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial of
service via application crash, or execute arbitrary code with the
privileges of the user invoking Firefox. (CVE-2016-1968)
Ronald Crane discovered a use-after-free in GetStaticInstance in WebRTC.
If a user were tricked in to opening a specially crafted website, an
attacker could potentially exploit this to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2016-1973)
Ronald Crane discovered an out-of-bounds read following a failed
allocation in the HTML parser in some circumstances. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit this to cause a denial of service via application
crash, or execute arbitrary code with the privileges of the user invoking
Firefox. (CVE-2016-1974)
Holger Fuhrmannek, Tyson Smith and Holger Fuhrmannek reported multiple
memory safety issues in the Graphite 2 library. If a user were tricked in
to opening a specially crafted website, an attacker could potentially
exploit these to cause a denial of service via application crash, or
execute arbitrary code with the privileges of the user invoking Firefox.
(CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792,
CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797,
CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802)
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2917-2");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_attribute(attribute:"risk_factor", value:"Critical");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/13");
script_set_attribute(attribute:"patch_publication_date", value:"2016/04/07");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/08");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-globalmenu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-af");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-an");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ar");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-as");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ast");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-az");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-be");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-br");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-bs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ca");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-csb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-cy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-da");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-de");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-el");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-en");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-es");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-et");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-eu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-fy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ga");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-gu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-he");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hsb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-hy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-id");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-is");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-it");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ja");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ka");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-km");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-kn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ko");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ku");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-lv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mai");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ml");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-mr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ms");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-nso");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-oc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-or");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-pt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ro");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ru");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-si");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-sw");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-ta");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-te");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-th");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-tr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-uz");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-vi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-xh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hans");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zh-hant");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-locale-zu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-mozsymbols");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:firefox-testsuite");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2016-2020 Canonical, Inc. / NASL script (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '14.04', 'pkgname': 'firefox', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-dev', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-globalmenu', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-af', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-an', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ar', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-as', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ast', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-az', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-be', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-bg', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-bn', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-br', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-bs', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ca', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-cs', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-csb', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-cy', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-da', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-de', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-el', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-en', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-eo', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-es', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-et', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-eu', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-fa', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-fi', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-fr', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-fy', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ga', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-gd', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-gl', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-gn', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-gu', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-he', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-hi', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-hr', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-hsb', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-hu', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-hy', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-id', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-is', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-it', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ja', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ka', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-kk', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-km', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-kn', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ko', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ku', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-lg', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-lt', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-lv', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-mai', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-mk', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ml', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-mn', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-mr', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ms', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-nb', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-nl', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-nn', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-nso', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-oc', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-or', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-pa', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-pl', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-pt', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ro', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ru', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-si', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sk', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sl', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sq', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sr', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sv', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-sw', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-ta', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-te', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-th', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-tr', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-uk', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-uz', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-vi', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-xh', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-zh-hans', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-zh-hant', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-locale-zu', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-mozsymbols', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'},
{'osver': '14.04', 'pkgname': 'firefox-testsuite', 'pkgver': '45.0.1+build1-0ubuntu0.14.04.2'}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
var extra = '';
extra += ubuntu_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'firefox / firefox-dev / firefox-globalmenu / firefox-locale-af / etc');
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo