Updated firefox packages fix security vulnerabilities
Publication date: 19 Jun 2017Modification date: 16 Jun 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-5470 , CVE-2017-5472 , CVE-2017-7749 , CVE-2017-7751 , CVE-2017-7756 , CVE-2017-7771 , CVE-2017-7772 , CVE-2017-7773 , CVE-2017-7774 , CVE-2017-7775 , CVE-2017-7776 , CVE-2017-7777 , CVE-2017-7778 , CVE-2017-7750 , CVE-2017-7752 , CVE-2017-7754 , CVE-2017-7757 , CVE-2017-7758 , CVE-2017-7764
Description
Multiple flaws were found in the processing of malformed web content. A
web page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user
running Firefox (CVE-2017-5470, CVE-2017-5472, CVE-2017-7749,
CVE-2017-7751, CVE-2017-7756, CVE-2017-7771, CVE-2017-7772,
CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776,
CVE-2017-7777, CVE-2017-7778, CVE-2017-7750, CVE-2017-7752,
CVE-2017-7754, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764).
References
- https://bugs.mageia.org/show_bug.cgi?id=21088
- https://www.mozilla.org/en-US/security/advisories/mfsa2017-16/
- https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
- https://rhn.redhat.com/errata/RHSA-2017-1440.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5470
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5472
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7749
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7751
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7756
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7771
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7772
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7773
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7774
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7775
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7776
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7777
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7778
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7750
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7752
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7754
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7757
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7758
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7764
SRPMS
5/core
- firefox-52.2.0-1.mga5
- firefox-l10n-52.2.0-1.mga5
- nspr-4.15-1.mga5