Oval Definition:
oval:org.opensuse.security:def:85100
Revision Date
:
2018-03-29
Version
:
1
Title
:
Security update for MozillaFirefox (Moderate)
Description
:
This update for MozillaFirefox fixes the following issues:
Security issues fixed in Firefox ESR 52.7.3 (bsc#1085130):
- CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 - CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList - CVE-2018-5129: Out-of-bounds write with malformed IPC messages - CVE-2018-5130: Mismatched RTP payload type can trigger memory corruption - CVE-2018-5131: Fetch API improperly returns cached copies of no-store/no-cache resources - CVE-2018-5144: Integer overflow during Unicode conversion - CVE-2018-5145: Memory safety bugs fixed in Firefox ESR 52.7 - CVE-2018-5146: Out of bounds memory write in libvorbis (bsc#1085671) - CVE-2018-5147: Out of bounds memory write in libtremor (bsc#1085671) - CVE-2018-5148: Use-after-free in compositor (MFSA 2018-10) (bsc#1087059)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1085130
1085671
1087059
CVE-2018-5125
CVE-2018-5127
CVE-2018-5129
CVE-2018-5130
CVE-2018-5131
CVE-2018-5144
CVE-2018-5145
CVE-2018-5146
CVE-2018-5147
CVE-2018-5148
SUSE-SU-2018:0850-1
Platform(s)
:
SUSE Linux Enterprise Server 12 SP3
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed
AND
Package Information
MozillaFirefox-52.7.3esr-109.25.1 is installed
OR
MozillaFirefox-translations-52.7.3esr-109.25.1 is installed
BACK