Updated firefox packages fixes security vulnerabilities
Publication date: 11 Aug 2015Modification date: 11 Aug 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-4473 , CVE-2015-4475 , CVE-2015-4478 , CVE-2015-4479 , CVE-2015-4480 , CVE-2015-4484 , CVE-2015-4485 , CVE-2015-4486 , CVE-2015-4487 , CVE-2015-4488 , CVE-2015-4489 , CVE-2015-4491 , CVE-2015-4492 , CVE-2015-4493
Description
Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox (CVE-2015-4473, CVE-2015-4475, CVE-2015-4478, CVE-2015-4479, CVE-2015-4480, CVE-2015-4493, CVE-2015-4484, CVE-2015-4491, CVE-2015-4485, CVE-2015-4486, CVE-2015-4487, CVE-2015-4488, CVE-2015-4489, CVE-2015-4492)
References
- https://bugs.mageia.org/show_bug.cgi?id=16571
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.3_release_notes
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-79/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-80/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-82/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-83/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-87/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-88/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-89/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-90/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-92/
- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
- https://rhn.redhat.com/errata/RHSA-2015-1586.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4473
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4475
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4478
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4479
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4480
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4484
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4485
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4486
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4487
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4488
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4489
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4491
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4492
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4493
SRPMS
5/core
- rootcerts-20150709.00-1.mga5
- nss-3.19.3-1.mga5
- firefox-38.2.0-1.mga5
- firefox-l10n-38.2.0-1.mga5
4/core
- rootcerts-20150709.00-1.mga4
- nss-3.19.3-1.mga4
- firefox-38.2.0-1.mga4
- firefox-l10n-38.2.0-1.mga4