Lucene search

K
suseSuseSUSE-SU-2016:1352-1
HistoryMay 18, 2016 - 9:07 p.m.

Security update for Mozilla Firefox (important)

2016-05-1821:07:42
lists.opensuse.org
21
mozilla firefox
security update
vulnerabilities
cve-2016-2805
cve-2016-2807
cve-2016-2808
cve-2016-2814
memory safety
javascript watch
buffer overflow
libstagefright

EPSS

0.165

Percentile

96.0%

Mozilla Firefox was updated to fix the following vulnerabilities
(bsc#977333):

   * CVE-2016-2805: Memory safety bug fixed in Firefox ESR 38.8 (MFSA
     2016-39, bsc#977374)
   * CVE-2016-2807: Memory safety bugs fixed in Firefox ESR 45.1, Firefox
     ESR 38.8 and Firefox 46 (MFSA 2016-39, bsc#977376)
   * CVE-2016-2808: Write to invalid HashMap entry through
     JavaScript.watch() (MFSA 2016-47, bsc#977386)
   * CVE-2016-2814: Buffer overflow in libstagefright with CENC offsets
     (MFSA 2016-44, bsc#977381)

Security Issues:

   * CVE-2016-2805
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2805">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2805</a>&gt;
   * CVE-2016-2807
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2807">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2807</a>&gt;
   * CVE-2016-2808
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2808">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2808</a>&gt;
   * CVE-2016-2814
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2814">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2814</a>&gt;