MGASA-2018-0420
- Source
- https://advisories.mageia.org/MGASA-2018-0420.html
- Import Source
- https://advisories.mageia.org/MGASA-2018-0420.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2018-0420
- Related
- Published
- 2018-10-27T09:45:46Z
- Modified
- 2018-10-27T09:21:34Z
- Summary
- Updated firefox packages fix security vulnerabilities
- Details
-
Updated firefox packages fix security vulnerabilities:
Mozilla: Memory safety bugs fixed in Firefox ESR 60.3 (CVE-2018-12389).
Mozilla: Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3 (CVE-2018-12390).
Mozilla: Crash with nested event loops (CVE-2018-12392).
Mozilla: Integer overflow during Unicode conversion while loading JavaScript (CVE-2018-12393).
Mozilla: WebExtension bypass of domain restrictions through header rewriting (CVE-2018-12395).
Mozilla: WebExtension content scripts can execute in disallowed contexts (CVE-2018-12396).
Mozilla: WebExtension local file permission check bypass (CVE-2018-12397).
- References
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:6 / firefox
Package
- Name
- firefox
- Purl
- pkg:rpm/mageia/firefox?distro=mageia-6
Mageia:6 / firefox-l10n
Package
- Name
- firefox-l10n
- Purl
- pkg:rpm/mageia/firefox-l10n?distro=mageia-6
Mageia:6 / nspr
Package
- Name
- nspr
- Purl
- pkg:rpm/mageia/nspr?distro=mageia-6
Mageia:6 / nss
Package
- Name
- nss
- Purl
- pkg:rpm/mageia/nss?distro=mageia-6
Mageia:6 / rootcerts
Package
- Name
- rootcerts
- Purl
- pkg:rpm/mageia/rootcerts?distro=mageia-6