SUSE-SU-2020:0383-1 -- SLES MozillaFirefoxID: oval:org.secpod.oval:def:89050220 | Date: (C)2023-10-10 (M)2023-10-10 |
Class: PATCH | Family: unix |
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.5.0 ESR * Fixed: Various stability and security fixes - Mozilla Firefox ESR68.5 MFSA 2020-06 * CVE-2020-6796 Missing bounds check on shared memory read in the parent process * CVE-2020-6797 Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6799 Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader * CVE-2020-6800 Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
Platform: |
SUSE Linux Enterprise Desktop 15 |
SUSE Linux Enterprise Desktop 15 SP1 |