SUSE-SU-2024:1676-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89051892 | Date: (C)2024-06-18 (M)2024-06-18 |
Class: PATCH | Family: unix |
This update for MozillaFirefox fixes the following issues: Update to version 115.11.0 ESR : * CVE-2024-4367: Arbitrary JavaScript execution in PDF.js * CVE-2024-4767: IndexedDB files retained in private browsing mode * CVE-2024-4768: Potential permissions request bypass via clickjacking * CVE-2024-4769: Cross-origin responses could be distinguished between script and non-script content-types * CVE-2024-4770: Use-after-free could occur when printing to PDF * CVE-2024-4777: Memory safety bugs fixed in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11
Platform: |
SUSE Linux Enterprise Server 12 SP5 |