16 matches found
SUSE: Security Advisory (SUSE-SU-2018:0850-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-5147
The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms. This vulnerability affects Firefox ESR 52.7.2 and Firefox 59.0.1...
CVE-2018-5147
CVE-2018-5147 references the same flaw as CVE-2018-5146, arising from an out-of-bounds write in Vorbis processing, with libtremor used by Firefox on Android/ARM. The initial description notes impact on Firefox ESR < 52.7.2 and Firefox
SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2018:0850-1)
This update for MozillaFirefox fixes the following issues: Security issues fixed in Firefox ESR 52.7.3 bsc1085130 : - CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 - CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList - CVE-2018-5129: Out-of-bounds wri...
[SECURITY] [DLA 1319-1] firefox-esr security update
Package : firefox-esr Version : 52.7.2esr-1deb7u1 CVE ID : CVE-2018-5146 CVE-2018-5147 Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds memory write when playing Vorbis media files could result in the execution of arbitrary code. For Debian 7 "Wheezy", these problems have been...
Debian: Security Advisory (DLA-1319-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mozilla Firefox < 59.0.1
The version of Firefox installed on the remote Windows host is prior to 59.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-08 advisory. - The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on...
[SECURITY] [DLA 1312-1] libvorbisidec security update
Package : libvorbisidec Version : 1.0.2+svn18153-0.2+deb7u1 CVE ID : CVE-2018-5147 Huzaifa Sidhpurwala discovered that an out-of-bounds memory write in the codebook parsing code of the Libtremor multimedia library could result in the execution of arbitrary code if a malformed Vorbis file is opene...
Debian DSA-4141-1 : libvorbisidec - security update
Huzaifa Sidhpurwala discovered that an out-of-bounds memory write in the codebook parsing code of the Libtremor multimedia library could result in the execution of arbitrary code if a malformed Vorbis file is opened. C Tenable Network Security, Inc. The descriptive text and package checks in this...
openSUSE Security Update : MozillaFirefox (openSUSE-2018-278)
This update for Mozilla Firefox to version 52.7.2esr fixes security issues and bugs. Security issues fixed : - CVE-2018-5146: Specially crafted vorbis files could have been used to execute arbitrary code via an Out of bounds memory write bsc1085671, MFSA 2018-08 - CVE-2018-5147: Specially crafted...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2018:0737-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] [DSA 4143-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4143-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 17, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4141-1] libvorbisidec security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4141-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 16, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4141-1] libvorbisidec security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4141-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 16, 2018 https://www.debian.org/security/faq -...
KLA11595 SB vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds memory write vulnerability in libvorbis can be exploited to bypass security restrictions; 2...
Debian: Security Advisory (DSA-4141-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...