Download
| Alert*
oval:org.secpod.oval:def:64172
firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:64650 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-29. The update is required to fix an multiple vulnerabilities. The flaws are present in the application, which fails to handle an unknown vector. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:66710 Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code. oval:org.secpod.oval:def:66555 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due ... oval:org.secpod.oval:def:503824 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-f ... oval:org.secpod.oval:def:66705 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code. oval:org.secpod.oval:def:1801729 firefox-esr: Multiple vulnerabilities oval:org.secpod.oval:def:63984 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-25. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:503801 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozi ... oval:org.secpod.oval:def:503802 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due ... oval:org.secpod.oval:def:503800 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due ... oval:org.secpod.oval:def:67036 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:503811 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-f ... oval:org.secpod.oval:def:503816 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Security Fix: * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozilla: Use-After-Free when trying to connect to a S ... oval:org.secpod.oval:def:64091 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-26. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service. oval:org.secpod.oval:def:89050380 This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing . - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster . - CVE-2020-12417: Memory corruption due to mis ... oval:org.secpod.oval:def:604908 Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code. oval:org.secpod.oval:def:64056 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-25. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:64057 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-24. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:64064 Mozilla Firefox 78, Mozilla Firefox ESR 68.10 and Mozilla Thunderbird 68.10: When trying to connect to a STUN server, a race condition could have caused a use-after-free of a pointer, leading to memory corruption and a potentially exploitable crash. oval:org.secpod.oval:def:64092 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-26. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service. oval:org.secpod.oval:def:64649 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-29. The update is required to fix an multiple vulnerabilities. The flaws are present in the application, which fails to handle an unknown vector. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:205589 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Information disclosure due to manipulated URL object * Mozilla: Use-after-free in nsGlobalWindowInner * Mozi ... oval:org.secpod.oval:def:1700377 Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. This vulnerability affects Firefox ESR CVE-2020-12418 oval:org.secpod.oval:def:1502981 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502987 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:604902 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code. oval:org.secpod.oval:def:1502991 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705528 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:89000335 This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing . - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster . - CVE-2020-12417: Memory corruption due to mis ... oval:org.secpod.oval:def:1701164 The Mozilla Foundation Security Advisory describes this flaw as:Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially exploitable crash. The Mozilla Foundation Security Advisory describes this flaw as:Man ... oval:org.secpod.oval:def:1502967 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502965 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705540 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:89000366 This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing . - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster . - CVE-2020-12417: Memory corruption due to mis ... oval:org.secpod.oval:def:205590 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.10.0 ESR. Security Fix: * Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 * Mozilla: Information disclosure due ... oval:org.secpod.oval:def:1502970 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:2106019 Oracle Solaris 11 - ( CVE-2020-12399 ) oval:org.secpod.oval:def:63983 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-24. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:63991 Mozilla Firefox 78, Mozilla Firefox ESR 68.10 and Mozilla Thunderbird 68.10: When trying to connect to a STUN server, a race condition could have caused a use-after-free of a pointer, leading to memory corruption and a potentially exploitable crash. |