Download
| Alert*
|
oval:org.secpod.oval:def:66568
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.2.0 ESR. Security Fix: * Mozilla: Attacker-induced prompt for extension installation * Mozilla: Use-After-Free when aborting an operation * Moz ... oval:org.secpod.oval:def:64744 Mozilla Firefox 79, Mozilla Firefox ESR 78.1 and Mozilla Thunderbird 78.1: Mozilla developer Anne van Kesteren discovered that iframe sandbox with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations ... oval:org.secpod.oval:def:504272 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.2.0 ESR. Security Fix: * Mozilla: Attacker-induced prompt for extension installation * Mozilla: Use-After-Free when aborting an operation * Moz ... oval:org.secpod.oval:def:1503023 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:504354 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.3.0 ESR. Security Fix: * Mozilla: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3 * Mozilla: Integer overflow in nsJPEGEncoder::empt ... oval:org.secpod.oval:def:1503062 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:64740 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-30. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:64720 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-33. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service. oval:org.secpod.oval:def:705562 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:89050289 This update for MozillaFirefox fixes the following issues: This update for MozillaFirefox and pipewire fixes the following issues: MozillaFirefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes * CVE-2020-15652: Potential leak of redirect targets wh ... oval:org.secpod.oval:def:64739 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-32. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:89000696 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks int ... oval:org.secpod.oval:def:64709 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-32. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:89050282 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks int ... oval:org.secpod.oval:def:89000517 This update for MozillaFirefox fixes the following issues: - Fix broken translation-loading * allow addon sideloading * mark signatures for langpacks non-mandatory * do not autodisable user profile scopes - Google API key is not usable for geolocation service any more - Mozilla Firefox 78.1 ESR * F ... oval:org.secpod.oval:def:67057 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:64750 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-33. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service. oval:org.secpod.oval:def:64713 Mozilla Firefox 79, Mozilla Firefox ESR 78.1 and Mozilla Thunderbird 78.1: Mozilla developer Anne van Kesteren discovered that iframe sandbox with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations ... oval:org.secpod.oval:def:64707 The host is missing a high severity security update according to Mozilla advisory, MFSA2020-30. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation can cause multiple impacts. oval:org.secpod.oval:def:2106197 Oracle Solaris 11 - ( CVE-2019-11734 ) |
