20 matches found
SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14421-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14421-1 advisory. - During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly...
SUSE: Security Advisory (SUSE-SU-2020:14421-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:1898-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : MozillaFirefox (openSUSE-2020-1017)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. - CVE-2020-12417:...
Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1
July 21, 2020 Andrey Cherepanov 78.0-alt1 - New version 78.0. - Fixes: + CVE-2020-12415 AppCache manifest poisoning due to url encoded character processing + CVE-2020-12416 Use-after-free in WebRTC VideoBroadcaster + CVE-2020-12417 Memory corruption due to missing sign-extension for ValueTags on...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:1017-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : MozillaFirefox (openSUSE-2020-983)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. - CVE-2020-12417:...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:0983-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:0983-1 Security update for MozillaFirefox
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. - CVE-2020-12417: Memor...
Mozilla Thunderbird < 78.0
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-29 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler...
Mozilla Thunderbird < 78.0
The version of Thunderbird installed on the remote Windows host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-29 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler reported...
SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:1898-1)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. CVE-2020-12417: Memory...
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:1899-1)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. CVE-2020-12417: Memory...
CVE-2020-12416
CVE-2020-12416 describes a use-after-free in the WebRTC path where VideoStreamEncoder may be freed in a race with VideoBroadcaster::AddOrUpdateSink, causing memory corruption and a potentially exploitable crash. The vulnerability affects Mozilla Firefox releases before 78. The issue is mitigated ...
Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1
July 4, 2020 Alexey Gladkov 78.0.1-alt1 - New release 78.0.1. - Fixes: + CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing + CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster + CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags ...
Ubuntu: Security Advisory (USN-4408-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4408-1: Firefox vulnerabilities
Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass permission prompts, or execute arbitrary code. CVE-2020-12415,...
Mozilla Firefox < 78.0
The version of Firefox installed on the remote Windows host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-24 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler reported memory...
Mozilla Firefox Security Advisory (MFSA2020-24) - Windows
This host is missing a security update for Mozilla Firefox. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
UBUNTU-CVE-2020-12416
A VideoStreamEncoder may have been freed in a race condition with VideoBroadcaster::AddOrUpdateSink, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox 78...