Lucene search
RedHatRHSA-2020:2828HistoryJul 06, 2020 - 8:40 p.m.
(RHSA-2020:2828) Important: firefox security update
2020-07-0620:40:34
access.redhat.com
33
0.01 Low
EPSS
Percentile
83.9%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 68.10.0 ESR.
Security Fix(es):
-
Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 (CVE-2020-12417)
-
Mozilla: Information disclosure due to manipulated URL object (CVE-2020-12418)
-
Mozilla: Use-after-free in nsGlobalWindowInner (CVE-2020-12419)
-
Mozilla: Use-After-Free when trying to connect to a STUN server (CVE-2020-12420)
-
Mozilla: Add-On updates did not respect the same certificate trust rules as software updates (CVE-2020-12421)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | aarch64 | firefox | < 68.10.0-1.el8_2 | firefox-68.10.0-1.el8_2.aarch64.rpm |
| RedHat | 8 | s390x | firefox-debugsource | < 68.10.0-1.el8_2 | firefox-debugsource-68.10.0-1.el8_2.s390x.rpm |
| RedHat | 8 | ppc64le | firefox-debuginfo | < 68.10.0-1.el8_2 | firefox-debuginfo-68.10.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox-debuginfo | < 68.10.0-1.el8_2 | firefox-debuginfo-68.10.0-1.el8_2.x86_64.rpm |
| RedHat | 8 | ppc64le | firefox | < 68.10.0-1.el8_2 | firefox-68.10.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | ppc64le | firefox-debugsource | < 68.10.0-1.el8_2 | firefox-debugsource-68.10.0-1.el8_2.ppc64le.rpm |
| RedHat | 8 | x86_64 | firefox | < 68.10.0-1.el8_2 | firefox-68.10.0-1.el8_2.x86_64.rpm |
| RedHat | 8 | aarch64 | firefox-debugsource | < 68.10.0-1.el8_2 | firefox-debugsource-68.10.0-1.el8_2.aarch64.rpm |
| RedHat | 8 | s390x | firefox | < 68.10.0-1.el8_2 | firefox-68.10.0-1.el8_2.s390x.rpm |
| RedHat | 8 | x86_64 | firefox-debugsource | < 68.10.0-1.el8_2 | firefox-debugsource-68.10.0-1.el8_2.x86_64.rpm |
Related
nessus
nessus
Debian DSA-4713-1 : firefox-esr - security update
2020-07-02 00:00:00
RHEL 8 : firefox (RHSA-2020:2825)
2020-07-07 00:00:00
openSUSE Security Update : MozillaThunderbird (openSUSE-2020-967)
2020-07-20 00:00:00
oraclelinux
oraclelinux
firefox security update
2020-07-08 00:00:00
firefox security update
2020-07-07 00:00:00
thunderbird security update
2020-07-14 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 68.10.0-alt1
2020-07-13 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1
2020-07-04 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1
2020-07-21 00:00:00
openvas
openvas
Mozilla Firefox ESR Security Advisory (MFSA2020-25) - Mac OS X
2020-07-02 00:00:00
Mozilla Firefox ESR Security Advisory (MFSA2020-25) - Windows
2020-07-02 00:00:00
CentOS: Security Advisory for firefox (CESA-2020:2827)
2020-07-09 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2020-07-26 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2020-07-26 00:00:00
kaspersky
kaspersky
KLA11825 Multiple vulnerabilities in Mozilla Firefox ESR
2020-06-30 00:00:00
KLA11829 Multiple vulnerabilities in Mozilla Thunderbird
2020-06-30 00:00:00
KLA11824 Multiple vulnerabilities in Mozilla Firefox
2020-06-30 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2020-07-15 00:00:00
Security update for MozillaThunderbird (important)
2020-07-17 00:00:00
Security update for MozillaFirefox (important)
2020-07-17 00:00:00
redhat
redhat
(RHSA-2020:2827) Important: firefox security update
2020-07-06 20:39:44
(RHSA-2020:2826) Important: firefox security update
2020-07-06 20:39:10
(RHSA-2020:2824) Important: firefox security update
2020-07-06 20:17:54
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 68.10 — Mozilla
2020-06-30 00:00:00
Security Vulnerabilities fixed in Thunderbird 68.10.0 — Mozilla
2020-06-30 00:00:00
Security Vulnerabilities fixed in Firefox 78 — Mozilla
2020-06-30 00:00:00
amazon
amazon
Important: thunderbird
2020-07-21 16:34:00
Important: thunderbird
2023-02-17 00:11:00
centos
centos
firefox security update
2020-07-08 17:26:10
firefox security update
2020-07-08 17:23:13
debian
debian
[SECURITY] [DSA 4713-1] firefox-esr security update
2020-07-01 18:12:22
[SECURITY] [DSA 4718-1] thunderbird security update
2020-07-05 18:11:39
osv
osv
firefox-esr - security update
2020-07-01 00:00:00
thunderbird - security update
2020-07-05 00:00:00
ibm
ibm
ubuntu
ubuntu
Thunderbird vulnerabilities
2020-07-08 00:00:00
Firefox vulnerabilities
2020-07-02 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2020-07-05 01:47:21
Updated thunderbird packages fix security vulnerability
2020-08-01 02:25:42
prion
prion
Code injection
2020-07-09 15:15:00
Memory corruption
2020-07-09 15:15:00
Race condition
2020-07-09 15:15:00
alpinelinux
alpinelinux
debiancve
debiancve
redhatcve
redhatcve
cvelist
cvelist
nvd
nvd
cve
cve
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2020-07-08 03:21:43
Man-in-the-Middle (MitM)
2020-07-08 03:21:46
Denial Of Service (DoS)
2020-07-08 03:21:44
talos
talos
Mozilla Firefox URL mPath Information Disclosure Vulnerability
2020-07-01 00:00:00