Mageia Advisory: MGASA-2018-0393 - Updated firefox packages fix security vulnerability

Updated firefox packages fix security vulnerability

Publication date: 01 Oct 2018
Modification date: 01 Oct 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-12384

Description

Firefox 60 is now the only supported version of the ESR series and it
brings a completely new browser engine, designed to take full advantage of
the processing power in modern devices. Firefox also now exclusively
supports extensions built using the WebExtension API.

This update brings Firefox 60.2.1 along with the needed updated libraries :
- NSS 3.36.5 (fixes CVE CVE-2018-12384)
- Sqlite 3.22.0
- Hunspell 1.6.2

References

https://bugs.mageia.org/show_bug.cgi?id=23511
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12384

SRPMS

6/core

firefox-60.2.1-1.mga6
firefox-l10n-60.2.1-1.mga6
nss-3.36.5-1.1.mga6
sqlite3-3.22.0-2.1.mga6
hunspell1.6-1.6.2-1.mga6

Advisories » MGASA-2018-0393

Updated firefox packages fix security vulnerability

Description

References

SRPMS

6/core