SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14339-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14339-1 advisory. - When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the...

CVE-2020-6828

A malicious Android application could craft an Intent that would have been processed by Firefox for Android and potentially result in a file overwrite in the user's profile directory. One exploitation vector for this would be to supply a user.js file providing arbitrary malicious preference value...

CVE-2020-6828

Mode C - Detailed summary: CVE-2020-6828 affects Firefox for Android and is part of a set of fixes in Firefox ESR updates. The vulnerability arises when a malicious Android app crafts an Intent that Firefox for Android processes, potentially enabling a crafted user.js to overwrite preferences in ...

openSUSE Security Update : MozillaFirefox (openSUSE-2020-493)

This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues : - CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method bsc1168874. - CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images bsc1168874. -...

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:0493-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:0978-1)

This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues : CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method bsc1168874. CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images bsc1168874...

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:0971-1)

This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues : CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method bsc1168874. CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images bsc1168874...

Security update for MozillaFirefox (important)

openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0493-1 Rating: important References: 1168874 Cross-References: CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 Affected Products: openSUSE Leap 15.1 An update that fixes 5...

SUSE-SU-2020:0971-1 Security update for MozillaFirefox

This update for MozillaFirefox to version 68.7.0 ESR fixes the following issues: - CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method bsc1168874. - CVE-2020-6822: Fixed out of bounds write in GMPDecodeData when processing large images bsc1168874. -...

Slackware 14.2 / current : mozilla-firefox (SSA:2020-098-01)

New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2020-098-01. The text itself is copyright C Slackware Linux,...

KLA11726 Multiple vulnerabilities in Mozilla Firefox ESR

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in GMPDecodeData can be...

Mozilla Firefox ESR < 68.7

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 68.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-13 advisory. - Mozilla developers Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and...

Security fix for the ALT Linux 10 package firefox-esr version 68.7.0-alt1

April 6, 2020 Andrey Cherepanov 68.7.0-alt1 - New ESR version 68.7.0. - Fixes: + CVE-2020-6828 Preference overwrite via crafted Intent from malicious Android application + CVE-2020-6827 Custom Tabs in Firefox for Android could have the URI spoofed + CVE-2020-6821 Uninitialized memory could be rea...