Updated firefox packages fix security vulnerabilities
Publication date: 16 Dec 2015Type: security
Affected Mageia releases : 5
CVE: CVE-2015-7201 , CVE-2015-7205 , CVE-2015-7210 , CVE-2015-7212 , CVE-2015-7213 , CVE-2015-7214 , CVE-2015-7222
Description
Updated firefox packages fix security vulnerabilities: Multiple memory safety issues in Firefox were discovered. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7201). Ronald Crane discovered a buffer overflow through code inspection. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7205). Looben Yang discovered a use-after-free in WebRTC when closing channels in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7210). Abhishek Arya discovered an integer overflow when allocating large textures. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7212). Ronald Crane dicovered an integer overflow when processing MP4 format video in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7213). Tsubasa Iinuma discovered a way to bypass same-origin restrictions using data: and view-source: URLs. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to obtain sensitive information and read local files (CVE-2015-7214). Gerald Squelart discovered an integer underflow in the libstagefright library when parsing MP4 format video in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox (CVE-2015-7222).
References
- https://bugs.mageia.org/show_bug.cgi?id=17337
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-134/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-138/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-139/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-145/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-146/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-147/
- https://www.mozilla.org/en-US/security/advisories/mfsa2015-149/
- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
- http://www.ubuntu.com/usn/usn-2833-1/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7201
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7205
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7210
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7212
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7213
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7214
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7222
SRPMS
5/core
- nspr-4.11-1.mga5
- nss-3.21.0-1.mga5
- firefox-38.5.0-1.mga5
- firefox-l10n-38.5.0-1.mga5