Lucene search
RedHatRHSA-2017:3382HistoryDec 04, 2017 - 11:25 p.m.
(RHSA-2017:3382) Important: firefox security update
2017-12-0423:25:23
access.redhat.com
12
0.006 Low
EPSS
Percentile
77.7%
Mozilla Firefox is an open source web browser.
This update upgrades Firefox to version 52.5.1 ESR.
Security Fix(es):
- A privacy flaw was discovered in Firefox. In Private Browsing mode, a web worker could write persistent data to IndexedDB, which was not cleared when exiting and would persist across multiple sessions. A malicious website could exploit the flaw to bypass private-browsing protections and uniquely fingerprint visitors. (CVE-2017-7843)
Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Konark as the original reporter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | firefox | < 52.5.1-1.el6_9 | firefox-52.5.1-1.el6_9.x86_64.rpm |
| RedHat | 6 | ppc64 | firefox | < 52.5.1-1.el6_9 | firefox-52.5.1-1.el6_9.ppc64.rpm |
| RedHat | 7 | x86_64 | firefox-debuginfo | < 52.5.1-1.el7_4 | firefox-debuginfo-52.5.1-1.el7_4.x86_64.rpm |
| RedHat | 7 | s390x | firefox | < 52.5.1-1.el7_4 | firefox-52.5.1-1.el7_4.s390x.rpm |
| RedHat | 7 | s390 | firefox | < 52.5.1-1.el7_4 | firefox-52.5.1-1.el7_4.s390.rpm |
| RedHat | 7 | ppc | firefox-debuginfo | < 52.5.1-1.el7_4 | firefox-debuginfo-52.5.1-1.el7_4.ppc.rpm |
| RedHat | 7 | ppc64le | firefox-debuginfo | < 52.5.1-1.el7_4 | firefox-debuginfo-52.5.1-1.el7_4.ppc64le.rpm |
| RedHat | 6 | s390 | firefox | < 52.5.1-1.el6_9 | firefox-52.5.1-1.el6_9.s390.rpm |
| RedHat | 7 | ppc64 | firefox-debuginfo | < 52.5.1-1.el7_4 | firefox-debuginfo-52.5.1-1.el7_4.ppc64.rpm |
| RedHat | 7 | ppc | firefox | < 52.5.1-1.el7_4 | firefox-52.5.1-1.el7_4.ppc.rpm |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for firefox (EulerOS-SA-2017-1326)
2020-01-23 00:00:00
CentOS Update for firefox CESA-2017:3382 centos6
2017-12-07 00:00:00
Debian: Security Advisory (DLA-1202-1)
2023-03-08 00:00:00
cve
cve
CVE-2017-7843
2018-06-11 21:29:11
nessus
nessus
RHEL 6 / 7 : firefox (RHSA-2017:3382)
2017-12-05 00:00:00
EulerOS 2.0 SP2 : firefox (EulerOS-SA-2017-1327)
2017-12-18 00:00:00
debian
debian
[SECURITY] [DSA 4062-1] firefox-esr security update
2017-12-10 21:43:39
[SECURITY] [DLA 1202-1] firefox-esr security update
2017-12-10 12:15:41
ubuntucve
ubuntucve
CVE-2017-7843
2018-06-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 52.5.2-alt1
2017-12-10 00:00:00
oraclelinux
oraclelinux
firefox security update
2017-12-05 00:00:00
debiancve
debiancve
CVE-2017-7843
2018-06-11 21:29:11
osv
osv
firefox-esr - security update
2017-12-10 00:00:00
firefox-esr - security update
2017-12-10 00:00:00
alpinelinux
alpinelinux
CVE-2017-7843
2018-06-11 21:29:11
mageia
mageia
Updated firefox packages fix security vulnerability
2017-12-10 23:49:50
Updated iceape packages fix security vulnerabilities
2018-01-02 14:48:29
veracode
veracode
Information Disclosure
2019-01-15 09:19:48
prion
prion
Design/Logic Flaw
2018-06-11 21:29:00
cvelist
cvelist
CVE-2017-7843
2018-06-11 21:00:00
centos
centos
firefox security update
2017-12-06 13:23:07
redhatcve
redhatcve
CVE-2017-7843
2017-12-04 23:35:29
nvd
nvd
CVE-2017-7843
2018-06-11 21:29:11
mozilla
mozilla
Security vulnerabilities fixed in Firefox 57.0.1 — Mozilla
2017-11-29 00:00:00
Security vulnerabilities fixed in Firefox ESR 52.5.2 — Mozilla
2017-12-07 00:00:00
kaspersky
kaspersky
KLA11153 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2017-12-07 00:00:00
KLA11150 Multiple vulnerabilities in Mozilla Firefox
2017-11-29 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2017-11-29 00:00:00
ibm
ibm
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2018-02-20 00:00:00