Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2018:1833-1
HistoryJun 28, 2018 - 3:07 p.m.

Security update for MozillaFirefox (important)

2018-06-2815:07:56
lists.opensuse.org
60

0.014 Low

EPSS

Percentile

84.8%

JSON

This security update for MozillaFirefox to version 60.1.0esr fixes
multiple issues.

Security issues fixed (MFSA 2018-16, boo#1098998):

  • CVE-2018-12359: Buffer overflow using computed size of canvas element
  • CVE-2018-12360: Use-after-free when using focus()
  • CVE-2018-12361: Integer overflow in SwizzleData
  • CVE-2018-12362: Integer overflow in SSSE3 scaler
  • CVE-2018-5156: Media recorder segmentation fault when track type is
    changed during capture
  • CVE-2018-12363: Use-after-free when appending DOM nodes
  • CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins
  • CVE-2018-12365: Compromised IPC child process can list local filenames
  • CVE-2018-12371: Integer overflow in Skia library during edge builder
    allocation
  • CVE-2018-12366: Invalid data handling during QCMS transformations
  • CVE-2018-12367: Timing attack mitigation of PerformanceNavigationTiming
  • CVE-2018-12369: WebExtension security permission checks bypassed by
    embedded experiments
  • CVE-2018-5187: Memory safety bugs fixed in Firefox 60 and Firefox ESR
    60.1
  • CVE-2018-5188: Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1,
    and Firefox ESR 52.9

Other issues fixed:

  • various stability and regression fixes
  • do not disable system installed unsigned language packs (bmo#1464766)
OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.0x86_64mozillafirefox-debuginfo< 60.1.0-lp150.3.11.1MozillaFirefox-debuginfo-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap15.0x86_64mozillafirefox< 60.1.0-lp150.3.11.1MozillaFirefox-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap15.0x86_64mozillafirefox-translations-other< 60.1.0-lp150.3.11.1MozillaFirefox-translations-other-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap15.0x86_64mozillafirefox-devel< 60.1.0-lp150.3.11.1MozillaFirefox-devel-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap15.0x86_64mozillafirefox-translations-common< 60.1.0-lp150.3.11.1MozillaFirefox-translations-common-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap15.0x86_64mozillafirefox-debugsource< 60.1.0-lp150.3.11.1MozillaFirefox-debugsource-60.1.0-lp150.3.11.1.x86_64.rpm
openSUSE Leap42.3x86_64mozillafirefox-branding-upstream< 60.1.0-106.1MozillaFirefox-branding-upstream-60.1.0-106.1.x86_64.rpm
openSUSE Leap42.3x86_64mozillafirefox< 60.1.0-106.1MozillaFirefox-60.1.0-106.1.x86_64.rpm
openSUSE Leap42.3x86_64mozillafirefox-translations-other< 60.1.0-106.1MozillaFirefox-translations-other-60.1.0-106.1.x86_64.rpm
openSUSE Leap42.3x86_64mozillafirefox-buildsymbols< 60.1.0-106.1MozillaFirefox-buildsymbols-60.1.0-106.1.x86_64.rpm
Rows per page:
1-10 of 161

Related

openvas 27
nessus 54
altlinux 3
mozilla 5
suse 7
osv 6
kaspersky 3
ibm 1
debian 6
ubuntu 3
mageia 4
freebsd 1
archlinux 3
centos 4
redhat 4
oraclelinux 3
amazon 1
gentoo 2
debiancve 11
prion 11
cve 11
redhatcve 9
ubuntucve 11
veracode 9
openvas
openvas
Mozilla Firefox ESR Security Updates(mfsa_2018-15_2018-17)-MAC OS X
2018-06-27 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2018:1833-1)
2018-06-29 00:00:00
openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2018:2658-1)
2018-09-09 00:00:00
nessus
nessus
openSUSE Security Update : MozillaFirefox (openSUSE-2019-494)
2019-03-27 00:00:00
openSUSE Security Update : MozillaThunderbird (openSUSE-2018-994)
2018-09-10 00:00:00
openSUSE Security Update : MozillaFirefox (openSUSE-2018-676)
2018-06-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 60.1.0-alt1
2018-06-26 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 60.0-alt1
2018-08-13 00:00:00
Security fix for the ALT Linux 10 package thunderbird version July
2018-07-04 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox ESR 60.1 — Mozilla
2018-06-26 00:00:00
Security vulnerabilities fixed in Thunderbird 60 — Mozilla
2018-08-16 00:00:00
Security vulnerabilities fixed in Firefox ESR 52.9 — Mozilla
2018-06-26 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2018-09-08 12:10:25
Security update for seamonkey (important)
2018-08-15 15:07:29
Security update for seamonkey (important)
2018-09-22 09:21:07
osv
osv
firefox-esr - security update
2018-06-27 00:00:00
firefox-esr - security update
2018-06-29 00:00:00
thunderbird - security update
2018-09-16 00:00:00
kaspersky
kaspersky
KLA11299 Multiple vulnerabilities in Mozilla Thunderbird
2018-08-06 00:00:00
KLA11271 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR
2018-06-26 00:00:00
KLA11278 Multiple vulnerabilities in Mozilla Thunderbird
2018-07-03 00:00:00
ibm
ibm
Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM SONAS
2018-11-01 10:50:01
debian
debian
[SECURITY] [DLA 1406-1] firefox-esr security update
2018-06-29 08:26:14
[SECURITY] [DSA 4235-1] firefox-esr security update
2018-06-27 19:38:06
[SECURITY] [DSA 4295-1] thunderbird security update
2018-09-16 20:54:24
ubuntu
ubuntu
Firefox regressions
2018-07-10 00:00:00
Firefox vulnerabilities
2018-07-05 00:00:00
Thunderbird vulnerabilities
2018-07-12 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2018-07-01 20:17:14
Updated thunderbird packages fix security vulnerabilities
2018-07-24 01:27:34
Updated thunderbird packages fix security vulnerabilities
2018-07-24 01:27:34
freebsd
freebsd
mozilla -- multiple vulnerabilities
2018-06-26 00:00:00
archlinux
archlinux
[ASA-201806-14] firefox: multiple issues
2018-06-27 00:00:00
[ASA-201808-8] thunderbird: multiple issues
2018-08-10 00:00:00
[ASA-201807-4] thunderbird: multiple issues
2018-07-16 00:00:00
centos
centos
firefox security update
2018-07-12 20:46:19
firefox security update
2018-07-11 23:01:41
thunderbird security update
2018-07-25 16:11:17
redhat
redhat
(RHSA-2018:2112) Critical: firefox security update
2018-06-28 14:54:49
(RHSA-2018:2113) Critical: firefox security update
2018-06-28 14:55:24
(RHSA-2018:2252) Important: thunderbird security update
2018-07-24 20:50:32
oraclelinux
oraclelinux
firefox security update
2018-07-04 00:00:00
thunderbird security update
2018-07-24 00:00:00
thunderbird security update
2018-07-24 00:00:00
amazon
amazon
Critical: thunderbird
2018-08-21 17:15:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2018-10-02 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2018-11-24 00:00:00
debiancve
debiancve
CVE-2018-12369
2018-10-18 13:29:00
CVE-2018-12367
2018-10-18 13:29:00
CVE-2018-12361
2018-10-18 13:29:00
prion
prion
Design/Logic Flaw
2018-10-18 13:29:00
Integer overflow
2020-07-09 14:15:00
Design/Logic Flaw
2018-10-18 13:29:00
cve
cve
CVE-2018-12369
2018-10-18 13:29:00
CVE-2018-12367
2018-10-18 13:29:00
CVE-2018-12371
2020-07-09 14:15:00
redhatcve
redhatcve
CVE-2018-12371
2018-06-27 01:24:25
CVE-2018-12369
2018-06-27 01:18:55
CVE-2018-12361
2018-06-27 01:21:37
ubuntucve
ubuntucve
CVE-2018-12371
2018-06-27 00:00:00
CVE-2018-12369
2018-06-27 00:00:00
CVE-2018-12361
2018-06-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:02:06
Arbitrary Code Execution
2020-12-06 04:01:46
Timing Attack
2020-12-06 04:02:03

0.014 Low

EPSS

Percentile

84.8%

JSON
Related for OPENSUSE-SU-2018:1833-1
openvas27nessus54altlinux3mozilla5suse7osv6kaspersky3ibm1debian6ubuntu3mageia4freebsd1archlinux3centos4redhat4oraclelinux3amazon1gentoo2debiancve11prion11cve11redhatcve9ubuntucve11veracode9