SUSE-SU-2020:14268-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89000105 | Date: (C)2021-02-24 (M)2023-12-20 |
Class: PATCH | Family: unix |
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 * CVE-2019-17026 IonMonkey type confusion with StoreElementHole and FallibleStoreElement - Firefox Extended Support Release 68.4.0 ESR * Fixed: Various security fixes MFSA 2020-02 * CVE-2019-17015 Memory corruption in parent process during new content process initialization on Windows * CVE-2019-17016 Bypass of @namespace CSS sanitization during pasting * CVE-2019-17017 Type Confusion in XPCVariant.cpp * CVE-2019-17021 Heap address disclosure in parent process during content process initialization on Windows * CVE-2019-17022 CSS sanitization does not escape HTML tags * CVE-2019-17024 Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
Platform: |
SUSE Linux Enterprise Server 11 SP4 |