Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SU-2014:0665-1
HistoryMay 16, 2014 - 2:05 a.m.

Security update for Mozilla Firefox (important)

2014-05-1602:05:07
lists.opensuse.org
28

0.018 Low

EPSS

Percentile

86.6%

JSON

This Mozilla Firefox and Mozilla NSS update fixes several security and
non-security issues.

Mozilla Firefox has been updated to 24.5.0esr which fixes the following
issues:

  • MFSA 2014-34/CVE-2014-1518 Miscellaneous memory safety hazards
  • MFSA 2014-37/CVE-2014-1523 Out of bounds read while decoding JPG
    images
  • MFSA 2014-38/CVE-2014-1524 Buffer overflow when using non-XBL object
    as XBL
  • MFSA 2014-42/CVE-2014-1529 Privilege escalation through Web
    Notification API
  • MFSA 2014-43/CVE-2014-1530 Cross-site scripting (XSS) using history
    navigations
  • MFSA 2014-44/CVE-2014-1531 Use-after-free in imgLoader while
    resizing images
  • MFSA 2014-46/CVE-2014-1532 Use-after-free in nsHostResolver

Mozilla NSS has been updated to 3.16

  • required for Firefox 29
  • CVE-2014-1492_ In a wildcard certificate, the wildcard character
    should not be embedded within the U-label of an internationalized
    domain name. See the last bullet point in RFC 6125, Section 7.2.
  • Update of root certificates.
OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server LTSS11.1x86_64mozilla-nspr< 4.10.4-0.3.1mozilla-nspr-4.10.4-0.3.1.x86_64.rpm
SUSE Linux Enterprise Server LTSS11.1s390xmozillafirefox-translations< 24.5.0esr-0.3.1MozillaFirefox-translations-24.5.0esr-0.3.1.s390x.rpm
SUSE Linux Enterprise Server LTSS11.1x86_64mozillafirefox< 24.5.0esr-0.3.1MozillaFirefox-24.5.0esr-0.3.1.x86_64.rpm
SUSE Linux Enterprise Server LTSS11.1i586mozilla-nss< 3.16-0.3.1mozilla-nss-3.16-0.3.1.i586.rpm
SUSE Linux Enterprise Server LTSS11.1s390xmozillafirefox-branding-sled< 24-0.4.10.14MozillaFirefox-branding-SLED-24-0.4.10.14.s390x.rpm
SUSE Linux Enterprise Server LTSS11.1s390xlibfreebl3< 3.16-0.3.1libfreebl3-3.16-0.3.1.s390x.rpm
SUSE Linux Enterprise Server LTSS11.1x86_64mozilla-nss< 3.16-0.3.1mozilla-nss-3.16-0.3.1.x86_64.rpm
SUSE Linux Enterprise Server LTSS11.1i586mozilla-nspr< 4.10.4-0.3.1mozilla-nspr-4.10.4-0.3.1.i586.rpm
SUSE Linux Enterprise Server LTSS11.1s390xmozilla-nss-tools< 3.16-0.3.1mozilla-nss-tools-3.16-0.3.1.s390x.rpm
SUSE Linux Enterprise Server LTSS11.1x86_64mozillafirefox-translations< 24.5.0esr-0.3.1MozillaFirefox-translations-24.5.0esr-0.3.1.x86_64.rpm
Rows per page:
1-10 of 271

Related

openvas 69
nessus 48
suse 4
redhat 4
osv 4
veracode 8
mageia 2
centos 3
oraclelinux 4
debian 4
ubuntu 3
ibm 2
securityvulns 2
freebsd 1
ubuntucve 8
mozilla 8
prion 8
cve 8
seebug 1
slackware 1
debiancve 1
amazon 5
cloudfoundry 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0727-1)
2021-06-09 00:00:00
SUSE: Security Advisory for Mozilla (SUSE-SU-2014:0665-1)
2015-10-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0665-2)
2021-06-09 00:00:00
nessus
nessus
SUSE SLES11 Security Update : Mozilla Firefox (SUSE-SU-2014:0665-1)
2015-05-20 00:00:00
SUSE SLES10 Security Update : Mozilla Firefox (SUSE-SU-2014:0727-1)
2015-05-20 00:00:00
SUSE SLES10 Security Update : Mozilla Firefox (SUSE-SU-2014:0665-2)
2015-05-20 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2014-05-28 22:05:08
Security update for Mozilla Firefox (important)
2014-05-28 21:04:21
Security update for Mozilla Firefox (important)
2014-05-14 01:04:17
redhat
redhat
(RHSA-2014:0449) Important: thunderbird security update
2014-04-29 00:00:00
(RHSA-2014:0448) Critical: firefox security update
2014-04-29 00:00:00
(RHSA-2014:1073) Low: nss, nss-util, nss-softokn security, bug fix, and enhancement update
2014-08-18 00:00:00
osv
osv
iceweasel - security update
2014-04-30 00:00:00
icedove - security update
2014-05-05 00:00:00
nss - security update
2014-07-31 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Memory Corruption
2019-05-02 04:57:49
Out-Of-Bounds Read
2019-05-02 04:57:48
Arbitrary Code Execution
2019-05-02 04:57:48
mageia
mageia
Updated firefox & thunderbird packages fix multiple vulnerabilities
2014-05-02 22:03:24
Updated iceape packages fix multiple vulnerabilities
2014-06-11 20:56:59
centos
centos
thunderbird security update
2014-04-30 12:17:04
firefox security update
2014-04-30 12:17:25
nss security update
2014-08-18 21:47:41
oraclelinux
oraclelinux
firefox security update
2014-04-30 00:00:00
thunderbird security update
2014-04-30 00:00:00
nss, nss-util, nss-softokn security, bug fix, and enhancement update
2014-08-18 00:00:00
debian
debian
[SECURITY] [DSA 2924-1] icedove security update
2014-05-05 15:31:47
[SECURITY] [DSA 2918-1] iceweasel security update
2014-04-30 13:54:35
[DLA 23-1] nss security update
2014-07-31 11:27:15
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-04-30 00:00:00
Firefox vulnerabilities
2014-04-29 00:00:00
NSS vulnerability
2014-04-02 00:00:00
ibm
ibm
Security Bulletin: IBM Storwize V7000 Unified security vulnerabilities related to Mozilla Firefox (CVE-2014-1518, CVE-2014-1523, CVE-2014-1524, CVE-2014-1529, CVE-2014-1530, CVE-2014-1531, CVE-2014-1532, CVE-2014-1533, CVE-2014-1538, CVE-2014-1541)
2018-06-18 00:08:28
Security Bulletin: Mozilla firefox vulnerability issues on IBM SONAS (CVE-2014-1518, CVE-2014-1523, CVE-2014-1524, CVE-2014-1529, CVE-2014-1530, CVE-2014-1531, CVE-2014-1532, CVE-2014-1533, CVE-2014-1538, CVE-2014-1541)
2018-06-18 00:08:33
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-05-01 00:00:00
[ MDVSA-2014:066 ] nss
2014-03-24 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-04-29 00:00:00
ubuntucve
ubuntucve
CVE-2014-1524
2014-04-29 00:00:00
CVE-2014-1518
2014-04-29 00:00:00
CVE-2014-1530
2014-04-29 00:00:00
mozilla
mozilla
Buffer overflow when using non-XBL object as XBL — Mozilla
2014-04-29 00:00:00
Cross-site scripting (XSS) using history navigations — Mozilla
2014-04-29 00:00:00
Use-after-free in nsHostResolver — Mozilla
2014-04-29 00:00:00
prion
prion
Buffer overflow
2014-04-30 10:49:00
Memory corruption
2014-04-30 10:49:00
Heap overflow
2014-04-30 10:49:00
cve
cve
CVE-2014-1524
2014-04-30 10:49:00
CVE-2014-1530
2014-04-30 10:49:00
CVE-2014-1532
2014-04-30 10:49:00
seebug
seebug
Mozilla Network Security Services 'p12creat.c'内存破坏漏洞
2014-03-25 00:00:00
slackware
slackware
[slackware-security] mozilla-nss
2014-03-28 22:54:39
debiancve
debiancve
CVE-2014-1492
2014-03-25 13:25:00
amazon
amazon
Medium: ruby22
2015-05-27 14:06:00
Medium: ruby19
2015-05-27 14:05:00
Medium: ruby21
2015-05-27 14:06:00
cloudfoundry
cloudfoundry
CVE-2015-1855 Ruby OpenSSL Hostname Verification | Cloud Foundry
2015-04-30 00:00:00

0.018 Low

EPSS

Percentile

86.6%

JSON
Related for SUSE-SU-2014:0665-1
openvas69nessus48suse4redhat4osv4veracode8mageia2centos3oraclelinux4debian4ubuntu3ibm2securityvulns2freebsd1ubuntucve8mozilla8prion8cve8seebug1slackware1debiancve1amazon5cloudfoundry1