Download
| Alert*
oval:org.secpod.oval:def:89000074
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:2106162 Oracle Solaris 11 - ( CVE-2020-15683 ) oval:org.secpod.oval:def:505205 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.0. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78. ... oval:org.secpod.oval:def:505206 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.0. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78. ... oval:org.secpod.oval:def:119098 Chromium is an open-source web browser, powered by WebKit . oval:org.secpod.oval:def:67331 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-51. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67454 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, phishing, cross-site scripting or a DNS rebinding attack. oval:org.secpod.oval:def:705777 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:1700530 When drawing a transparent image on top of an unknown cross-origin image, the Skia library `drawImage` function took a variable amount of time depending on the content of the underlying image. This resulted in potential cross-origin information exposure of image content through timing side-channel a ... oval:org.secpod.oval:def:67332 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-50. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67238 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:67237 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:67239 The host is installed with Google Chrome before 87.0.4280.66 and is prone to a side-channel vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:705765 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:605317 Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code or denial of service. oval:org.secpod.oval:def:505212 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.5.0 ESR. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory sa ... oval:org.secpod.oval:def:505210 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.5.0 ESR. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory sa ... oval:org.secpod.oval:def:505211 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.0. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78. ... oval:org.secpod.oval:def:505216 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.5.0 ESR. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory sa ... oval:org.secpod.oval:def:1503123 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1503124 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1503121 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1503122 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:67285 The host is installed with Google Chrome before 87.0.4280.67 or Edge Chromium before 87.0.664.41 and is prone to a side-channel vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:1503127 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:67284 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:67240 The host is installed with Google Chrome before 87.0.4280.66 and is prone to a side-channel vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:1503125 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:67880 Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code or denial of service. oval:org.secpod.oval:def:68016 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.5.0 ESR. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory sa ... oval:org.secpod.oval:def:705768 firefox: Mozilla Open Source web browser Details: USN-4637-1 fixed vulnerabilities in Firefox. This update provides the corresponding updates for Ubuntu 16.04 LTS. Original advisory Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:67867 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, phishing, cross-site scripting or a DNS rebinding attack. oval:org.secpod.oval:def:69844 Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. oval:org.secpod.oval:def:67307 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:89000332 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:605382 Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. oval:org.secpod.oval:def:67351 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-50. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67353 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-52. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67352 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-51. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67354 Google Chrome before 87.0.4280.67, Edge Chromium before 87.0.664.41, Mozilla Firefox 83, Mozilla Firefox ESR 78.5 and Mozilla Thunderbird 78.5: When drawing a transparent image on top of an unknown cross-origin image, the Skia library codedrawImage/code function took a variable amount of time depend ... oval:org.secpod.oval:def:89050463 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:89050465 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.5.0 ESR * CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012: Variable time processing of cross-origin images during drawImage cal ... oval:org.secpod.oval:def:205711 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.0. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78. ... oval:org.secpod.oval:def:70270 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:205712 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.5.0 ESR. Security Fix: * Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * Mozilla: Memory sa ... oval:org.secpod.oval:def:70272 firefox: Mozilla Open Source web browser Details: USN-4637-1 fixed vulnerabilities in Firefox. This update provides the corresponding updates for Linux Mint 18.x LTS. Original advisory Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:1801765 firefox-esr: Multiple vulnerabilities in versions before 78.5 oval:org.secpod.oval:def:67330 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-50. The update is required to fix multiple vulnerabilities. The flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation can cause unspecified impact. oval:org.secpod.oval:def:67308 The host is installed with Google Chrome before 87.0.4280.66 or Edge Chromium before 87.0.664.47, Mozilla Firefox before 83.0, Firefox ESR before 78.5 or Thunderbird before 78.5 and is prone to a side-channel vulnerability. A flaw is present in the application, which fails to handle unspecified vect ... |