Lucene search
SuseSUSE-SU-2017:0426-1HistoryFeb 08, 2017 - 6:10 p.m.
Security update for MozillaFirefox (important)
2017-02-0818:10:27
lists.opensuse.org
23
0.935 High
EPSS
Percentile
98.9%
MozillaFirefox 45 ESR was updated to 45.7 to fix the following issues
(bsc#1021991):
- MFSA 2017-02/CVE-2017-5378: Pointer and frame data leakage of Javascript
objects (bsc#1021818) - MFSA 2017-02/CVE-2017-5396: Use-after-free with Media Decoder
(bsc#1021821) - MFSA 2017-02/CVE-2017-5386: WebExtensions can use data: protocol to
affect other extensions (bsc#1021823) - MFSA 2017-02/CVE-2017-5380: Potential use-after-free during DOM
manipulations (bsc#1021819) - MFSA 2017-02/CVE-2017-5390: Insecure communication methods in Developer
Tools JSON viewer (bsc#1021820) - MFSA 2017-02/CVE-2017-5373: Memory safety bugs fixed in Firefox 51 and
Firefox ESR 45.7 (bsc#1021824) - MFSA 2017-02/CVE-2017-5375: Excessive JIT code allocation allows bypass
of ASLR and DEP (bsc#1021814) - MFSA 2017-02/CVE-2017-5376: Use-after-free in XSL (bsc#1021817)
- MFSA 2017-02/CVE-2017-5383: Location bar spoofing with unicode
characters (bsc#1021822)
Please see <a href=“https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/”>https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/</a>
for more information.
Related
openvas
openvas
CentOS Update for firefox CESA-2017:0190 centos7
2017-01-27 00:00:00
CentOS Update for firefox CESA-2017:0190 centos5
2017-01-27 00:00:00
Debian Security Advisory DSA 3771-1 (firefox-esr - security update)
2017-01-25 00:00:00
nessus
nessus
Mozilla Firefox ESR 45.x < 45.7 Multiple Vulnerabilities (macOS)
2017-01-25 00:00:00
SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2017:0427-1)
2017-02-09 00:00:00
GLSA-201702-22 : Mozilla Firefox: Multiple vulnerabilities
2017-02-21 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2017-02-09 03:07:40
Security update for MozillaFirefox (important)
2017-02-02 00:13:07
osv
osv
firefox-esr - security update
2017-01-26 00:00:00
firefox-esr - security update
2017-01-25 00:00:00
icedove - security update
2017-04-20 00:00:00
centos
centos
firefox security update
2017-01-26 20:24:55
thunderbird security update
2017-02-02 21:10:46
redhat
redhat
(RHSA-2017:0190) Critical: firefox security update
2017-01-25 00:00:00
(RHSA-2017:0238) Important: thunderbird security update
2017-02-02 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2017-01-27 04:35:28
mageia
mageia
Updated firefox packages fix security vulnerability
2017-01-27 12:19:09
Updated thunderbird packages fix security vulnerabilities
2017-02-04 00:39:38
Updated iceape packages fix security vulnerabilities
2017-09-02 00:10:29
ibm
ibm
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2017-02-20 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2017-02-20 00:00:00
debian
debian
[SECURITY] [DSA 3771-1] firefox-esr security update
2017-01-25 21:46:48
[SECURITY] [DLA 800-1] firefox-esr security update
2017-01-26 17:17:44
[SECURITY] [DLA 896-1] icedove/thunderbird security update
2017-04-19 05:28:51
kaspersky
kaspersky
KLA10956 Multiple vulnerabilities in Mozilla Thunderbird
2017-01-26 00:00:00
KLA10953 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR
2017-01-24 00:00:00
oraclelinux
oraclelinux
firefox security update
2017-01-25 00:00:00
thunderbird security update
2017-02-02 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox ESR 45.7 — Mozilla
2017-01-24 00:00:00
Security vulnerabilities fixed in Thunderbird 45.7 — Mozilla
2017-01-26 00:00:00
Security vulnerabilities fixed in Firefox 51 — Mozilla
2017-01-24 00:00:00
archlinux
archlinux
[ASA-201701-40] thunderbird: multiple issues
2017-01-29 00:00:00
[ASA-201701-39] firefox: multiple issues
2017-01-29 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2017-01-28 00:00:00
Firefox regression
2017-02-06 00:00:00
Firefox vulnerabilities
2017-01-27 00:00:00
threatpost
threatpost
Firefox 51 Begins Warning Users of Insecure HTTP Connections
2017-01-25 14:30:37
freebsd
freebsd
mozilla -- multiple vulnerabilities
2017-01-24 00:00:00
prion
prion
Design/Logic Flaw
2018-06-11 21:29:00
Double free
2018-06-11 21:29:00
Memory corruption
2018-06-11 21:29:00
debiancve
debiancve
ubuntucve
ubuntucve
cve
cve
alpinelinux
alpinelinux
veracode
veracode
Denial Of Services(DoS)
2019-01-15 09:15:36
Use After Free
2019-05-02 06:09:39
Privilege Escalation
2019-05-02 06:09:38
redhatcve
redhatcve
exploitpack
exploitpack
Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00
Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution
2017-07-14 00:00:00
Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00
googleprojectzero
googleprojectzero
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
Firefox 46.0.1 ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00
Firefox 50.0.1 ASM.JS JIT-Spray Remote Code Execution
2017-07-14 00:00:00
Firefox 44.0.2 ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00
zdt
zdt
Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution Exploit
2018-03-17 00:00:00
Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution Exploit
2017-07-15 00:00:00
Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution Exploit
2018-03-17 00:00:00
exploitdb
exploitdb
Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution
2017-07-14 00:00:00
Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00
Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution
2018-03-16 00:00:00