Download
| Alert*
oval:org.secpod.oval:def:503481
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:503482 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:503486 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sanitization during pasting * Mozilla: Type Confus ... oval:org.secpod.oval:def:503484 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sanitization during pasting * Mozilla: Type Confus ... oval:org.secpod.oval:def:503489 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sanitization during pasting * Mozilla: Type Confus ... oval:org.secpod.oval:def:1801730 firefox-esr: Multiple vulnerabilities oval:org.secpod.oval:def:61536 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:61490 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or information disclosure. oval:org.secpod.oval:def:66768 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:60617 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-04. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the servi ... oval:org.secpod.oval:def:61487 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, data exfiltration or cross-site scripting. oval:org.secpod.oval:def:61528 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:89050227 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 * CVE-2019-17026 IonMonkey type confusion with StoreElementHole and FallibleStoreElement - Firefox Extended Support Release 68.4.0 ESR * Fixed: Various securi ... oval:org.secpod.oval:def:60498 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-03. The update is required to fix type confusion vulnerabilities. The flaws are present in the application, which fails to handle Incorrect alias information in IonMonkey JIT compiler. Successful exploita ... oval:org.secpod.oval:def:60510 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-03. The update is required to fix type confusion vulnerabilities. The flaws are present in the application, which fails to handle Incorrect alias information in IonMonkey JIT compiler. Successful exploita ... oval:org.secpod.oval:def:60509 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-03. The update is required to fix type confusion vulnerabilities. The flaws are present in the application, which fails to handle Incorrect alias information in IonMonkey JIT compiler. Successful exploita ... oval:org.secpod.oval:def:60511 Mozilla Firefox 72, Mozilla Firefox ESR 68.4 and Mozilla Thunderbird 64.8.1: Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. oval:org.secpod.oval:def:60709 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-04. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the servi ... oval:org.secpod.oval:def:89000434 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 * CVE-2019-17026 IonMonkey type confusion with StoreElementHole and FallibleStoreElement - Firefox Extended Support Release 68.4.0 ESR * Fixed: Various securi ... oval:org.secpod.oval:def:205424 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sanitization during pasting * Mozilla: Type Confus ... oval:org.secpod.oval:def:1504422 [68.4.1-1.0.1] - fix LD_LIBRARY_PATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one * Wed Jan 08 2020 Jan Horak - Update to 68.4.1esr build1 * Fri Jan 03 2020 Jan Horak - Update to 68.4.0esr build1 * Wed Dec 18 2019 Jan Horak - Fix for wrong intl.accept_lang when usin ... oval:org.secpod.oval:def:205420 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sanitization during pasting * Mozilla: Type Confus ... oval:org.secpod.oval:def:205421 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:1502764 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502765 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1504501 [68.4.1-2.0.1] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [68.4.1-2] - Update to 68.4.1 build1 oval:org.secpod.oval:def:705339 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:604668 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, data exfiltration or cross-site scripting. oval:org.secpod.oval:def:69939 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or information disclosure. oval:org.secpod.oval:def:69936 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, data exfiltration or cross-site scripting. oval:org.secpod.oval:def:2105425 Oracle Solaris 11 - ( CVE-2019-17017 ) oval:org.secpod.oval:def:89000105 This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.4.1 ESR * Fixed: Security fix MFSA 2020-03 * CVE-2019-17026 IonMonkey type confusion with StoreElementHole and FallibleStoreElement - Firefox Extended Support Release 68.4.0 ESR * Fixed: Various securi ... oval:org.secpod.oval:def:1502771 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502772 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1700304 When pasting a lt;stylegt; tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace rule. This could allow for injection into certain types of websites resulting in data exfiltration. This vulnerability affects Firefox ESR CVE-2019-17016 oval:org.secpod.oval:def:69484 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:705327 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:205419 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Security Fix: * Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement * Mozilla: Bypass of @namespace CSS sa ... oval:org.secpod.oval:def:604680 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or information disclosure. oval:org.secpod.oval:def:60499 Mozilla Firefox 72.0.1, Mozilla Firefox ESR 68.4.1 and Mozilla Thunderbird 68.4.1: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. oval:org.secpod.oval:def:60497 The host is missing a critical severity security update according to Mozilla advisory, MFSA2020-03. The update is required to fix type confusion vulnerabilities. The flaws are present in the application, which fails to handle Incorrect alias information in IonMonkey JIT compiler. Successful exploita ... oval:org.secpod.oval:def:70197 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:705443 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. |