Advisories » MGASA-2017-0448

Updated firefox packages fix security vulnerability

Publication date: 10 Dec 2017
Modification date: 10 Dec 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-7843

Description

Web worker in Private Browsing mode can write IndexedDB data.
(CVE-2017-7843)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=22129
• https://www.mozilla.org/en-US/security/advisories/mfsa2017-28/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7843

SRPMS

5/core

• firefox-52.5.2-1.mga5
• firefox-l10n-52.5.2-1.mga5

6/core

• firefox-52.5.2-1.mga6
• firefox-l10n-52.5.2-1.mga6