SUSE-SU-2018:0361-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89002447 | Date: (C)2021-02-26 (M)2023-02-13 |
Class: PATCH | Family: unix |
This update for MozillaFirefox to version ESR 52.6 fixes several issues. These security issues were fixed: - CVE-2018-5091: Use-after-free with DTMF timers . - CVE-2018-5095: Integer overflow in Skia library during edge builder allocation . - CVE-2018-5096: Use-after-free while editing form elements . - CVE-2018-5097: Use-after-free when source document is manipulated during XSLT . - CVE-2018-5098: Use-after-free while manipulating form input elements . - CVE-2018-5099: Use-after-free with widget listener . - CVE-2018-5102: Use-after-free in HTML media elements . - CVE-2018-5103: Use-after-free during mouse event handling . - CVE-2018-5104: Use-after-free during font face manipulation . - CVE-2018-5117: URL spoofing with right-to-left text aligned left-to-right . - CVE-2018-5089: Various memory safety bugs .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |