66 matches found
MiracleLinux 7 : firefox-68.7.0-2.0.1.el7.AXS7 (AXSA:2020-4711:08)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4711:08 advisory. Mozilla: Uninitialized memory could be read when using the WebGL copyTexSubImage method CVE-2020-6821 Mozilla: Memory safety bugs fixed in Firefox 7...
Oracle Linux 6 : thunderbird (ELSA-2020-1488)
The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-1488 advisory. - Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild...
SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14339-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14339-1 advisory. - When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the...
NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2020-0064)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has firefox packages installed that are affected by multiple vulnerabilities: - Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after- free. We are aware of targeted attacks in...
NewStart CGSL MAIN 6.01 : thunderbird Multiple Vulnerabilities (NS-SA-2020-0036)
The remote NewStart CGSL host, running version MAIN 6.01, has thunderbird packages installed that are affected by multiple vulnerabilities: - By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This...
RHEL 8 : firefox (RHSA-2020:1406)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1406 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
Amazon Linux 2 : thunderbird (ALAS-2020-1429)
The version of thunderbird installed on the remote host is prior to 68.8.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1429 advisory. The Mozilla Foundation Security Advisory describes this flaw as:On 32-bit builds, an out of bounds write could have...
CentOS 7 : thunderbird (RHSA-2020:1489)
The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1489 advisory. - Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after- free. We are aware of targeted attacks in t...
thunderbird security update
CentOS Errata and Security Advisory CESA-2020:1489 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
firefox security update
CentOS Errata and Security Advisory CESA-2020:1429 An update for firefox is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
thunderbird security update
CentOS Errata and Security Advisory CESA-2020:1488 An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
CentOS 6 : firefox (RHSA-2020:1429)
The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1429 advisory. - When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned...
CentOS: Security Advisory for firefox (CESA-2020:1429)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CentOS: Security Advisory for thunderbird (CESA-2020:1488)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : MozillaThunderbird (openSUSE-2020-544)
This update for MozillaThunderbird to version 68.7.0 fixes the following issues : - CVE-2020-6819: Use-after-free while running the nsDocShell destructor boo1168630 - CVE-2020-6820: Use-after-free when handling a ReadableStream boo1168630 - CVE-2020-6821: Uninitialized memory could be read when...
CVE-2020-6825
Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary...
CVE-2020-6825
CVE-2020-6825 is a memory-safety issue in Mozilla Firefox/Thunderbird affecting Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox
CVE-2020-6825
Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary...
openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2020:0544-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:0544-1 Security update for MozillaThunderbird
This update for MozillaThunderbird to version 68.7.0 fixes the following issues: - CVE-2020-6819: Use-after-free while running the nsDocShell destructor boo1168630 - CVE-2020-6820: Use-after-free when handling a ReadableStream boo1168630 - CVE-2020-6821: Uninitialized memory could be read when...