SUSE-SU-2019:2872-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89003323 | Date: (C)2021-02-27 (M)2024-05-08 |
Class: PATCH | Family: unix |
This update for MozillaFirefox to 68.2.0 ESR fixes the following issues: Mozilla Firefox was updated to version 68.2.0 ESR . Security issues fixed: - CVE-2019-15903: Fixed a heap overflow in the expat library . - CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB . - CVE-2019-11758: Fixed a potentially exploitable crash due to 360 Total Security . - CVE-2019-11759: Fixed a stack buffer overflow in HKDF output . - CVE-2019-11760: Fixed a stack buffer overflow in WebRTC networking . - CVE-2019-11761: Fixed an unintended access to a privileged JSONView object . - CVE-2019-11762: Fixed a same-origin-property violation . - CVE-2019-11763: Fixed an XSS bypass . - CVE-2019-11764: Fixed several memory safety bugs . Non-security issues fixed: - Firefox 60.7 ESR changed the user interface language . - Wrong Firefox GUI Language . - Fixed an inadvertent crash report transmission without user opt-in . - Firefox hangs randomly when browsing and scrolling . - Firefox stops loading page until mouse is moved .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
SUSE Linux Enterprise Server 12 SP5 |
SUSE Linux Enterprise Server 12 SP4 |