17 matches found
SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14421-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14421-1 advisory. - During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly...
SUSE: Security Advisory (SUSE-SU-2020:1898-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:14421-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-12423
When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one was placed in a folder in the user's %PATH%, Firefox may have loaded the DLL, leading to arbitrary code execution. Note: This issue only affects the Windows operating system; other operating systems are...
openSUSE Security Update : MozillaFirefox (openSUSE-2020-1017)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. - CVE-2020-12417:...
Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1
July 21, 2020 Andrey Cherepanov 78.0-alt1 - New version 78.0. - Fixes: + CVE-2020-12415 AppCache manifest poisoning due to url encoded character processing + CVE-2020-12416 Use-after-free in WebRTC VideoBroadcaster + CVE-2020-12417 Memory corruption due to missing sign-extension for ValueTags on...
openSUSE Security Update : MozillaFirefox (openSUSE-2020-983)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. - CVE-2020-12417:...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:0983-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mozilla Thunderbird < 78.0
The version of Thunderbird installed on the remote Windows host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-29 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler reported...
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:1899-1)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. CVE-2020-12417: Memory...
SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:1898-1)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. CVE-2020-12417: Memory...
CVE-2020-12423
When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one was placed in a folder in the user's %PATH%, Firefox may have loaded the DLL, leading to arbitrary code execution. Note: This issue only affects the Windows operating system; other operating systems are...
CVE-2020-12423
When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one was placed in a folder in the user's %PATH%, Firefox may have loaded the DLL, leading to arbitrary code execution. Note: This issue only affects the Windows operating system; other operating systems are...
CVE-2020-12423
CVE-2020-12423 (Windows only) is a DLL hijacking vulnerability in Firefox: if webauthn.dll is missing and a malicious DLL with the same name is placed in a folder on the user’s PATH, Firefox may load it and execute arbitrary code. Affected products are Firefox versions earlier than 78 on Windows....
Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1
July 4, 2020 Alexey Gladkov 78.0.1-alt1 - New release 78.0.1. - Fixes: + CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing + CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster + CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags ...
Mozilla Firefox < 78.0
The version of Firefox installed on the remote Windows host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-24 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler reported memory...
Mozilla Firefox Security Advisory (MFSA2020-24) - Windows
This host is missing a security update for Mozilla Firefox. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...