Updated firefox packages fix security vulnerabilities
Publication date: 23 Mar 2015Modification date: 23 Mar 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-0817 , CVE-2015-0818
Description
A flaw was discovered in the implementation of typed array bounds checking
in the Javascript just-in-time compilation. If a user were tricked in to
opening a specially crafted website, an attacked could exploit this to
execute arbitrary code with the privileges of the user invoking Firefox
(CVE-2015-0817).
Mariusz Mlynski discovered a flaw in the processing of SVG format content
navigation. If a user were tricked in to opening a specially crafted
website, an attacker could exploit this to run arbitrary script in a
privileged context (CVE-2015-0818).
The firefox package has been updated to version 31.5.3 to fix these issues.
Also, the nss package has been updated to version 3.18, which enables TLS
and DTLS 1.2, increases the default RSA key size created by certutil to 2048
bits, and has some CA root certificate updates.
References
- https://bugs.mageia.org/show_bug.cgi?id=15555
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-28/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-29/
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18_release_notes
- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
- http://www.ubuntu.com/usn/usn-2538-1/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0817
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0818
SRPMS
4/core
- rootcerts-20150226.00-1.mga4
- nss-3.18.0-1.mga4
- firefox-31.5.3-1.mga4
- firefox-l10n-31.5.3-1.mga4