Download
| Alert*
oval:org.secpod.oval:def:89002792
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.7.0 ESR * CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests * CVE-2021-23954: Fixed a type confusion when using logical assignment operators in JavaScript switch state ... oval:org.secpod.oval:def:89002850 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.7.0 ESR * CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests * CVE-2021-23954: Fixed a type confusion when using logical assignment operators in JavaScript switch state ... oval:org.secpod.oval:def:89002811 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.7.0 ESR * CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests * CVE-2021-23954: Fixed a type confusion when using logical assignment operators in JavaScript switch state ... oval:org.secpod.oval:def:70365 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:505777 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.7.0 ESR. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assi ... oval:org.secpod.oval:def:505776 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.7.0 ESR. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assi ... oval:org.secpod.oval:def:1801867 CVE-2021-23953: Cross-origin information leakage via redirected PDF requests, CVE-2021-23954: Type confusion when using logical assignment operators in JavaScript switch statements, CVE-2021-23960: Use-after-poison for incorrectly redeclared JavaScript variables during GC, CVE-2021-23964: Memory saf ... oval:org.secpod.oval:def:505778 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assignment operators in JavaScript switch statements ... oval:org.secpod.oval:def:505779 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assignment operators in JavaScript switch statements ... oval:org.secpod.oval:def:705898 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:68522 The host is missing a high severity security update according to the Apple advisory MFSA2021-05 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:1700550 The Mozilla Foundation Security Advisory describes these flaws as:During the plaintext phase of the STARTTLS connection setup, protocol commands could have been injected and evaluated within the encrypted session. When a HTTPS page was embedded in a HTTP page, and there was a service worker register ... oval:org.secpod.oval:def:1504608 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:68507 The host is missing a high severity security update according to the Apple advisory MFSA2021-05 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:1504610 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:69587 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assignment operators in JavaScript switch statements ... oval:org.secpod.oval:def:68523 The host is missing a high severity security update according to the Apple advisory MFSA2021-04 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:69858 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or information disclosure. oval:org.secpod.oval:def:89047073 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.7.0 ESR * CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests * CVE-2021-23954: Fixed a type confusion when using logical assignment operators in JavaScript switch state ... oval:org.secpod.oval:def:1504609 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:605418 Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or an information leak. oval:org.secpod.oval:def:605416 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or information disclosure. oval:org.secpod.oval:def:68506 The host is missing a high severity security update according to the Apple advisory MFSA2021-04 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:2106627 Oracle Solaris 11 - ( CVE-2021-20215 ) oval:org.secpod.oval:def:69860 Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or an information leak. oval:org.secpod.oval:def:69586 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.7.0 ESR. Security Fix: * Mozilla: Cross-origin information leakage via redirected PDF requests * Mozilla: Type confusion when using logical assi ... oval:org.secpod.oval:def:1504612 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705877 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:68505 The host is missing a high severity security update according to the Apple advisory MFSA2021-03 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:68510 Mozilla Firefox 85, Mozilla Firefox ESR 78.7 and Mozilla Thunderbird 78.7: If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. oval:org.secpod.oval:def:2106962 Oracle Solaris 11 - ( CVE-2020-26950 ) oval:org.secpod.oval:def:68521 The host is missing a high severity security update according to the Apple advisory MFSA2021-03 and is prone to multiple vulnerabilities. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:68526 Mozilla Firefox 85, Mozilla Firefox ESR 78.7 and Mozilla Thunderbird 78.7: If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. |