Advisories » MGASA-2019-0198

Updated firefox packages fix security vulnerability

Publication date: 21 Jun 2019
Modification date: 21 Jun 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2019-11707

Description

The updated firefox packages fix a security vulnerability that's being
exploited in the wild:

Type confusion in Array.pop. (CVE-2019-11707)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24976
• https://www.mozilla.org/en-US/firefox/60.7.1/releasenotes/
• https://www.mozilla.org/en-US/security/advisories/mfsa2019-18/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11707

SRPMS

6/core

• firefox-60.7.1-1.mga6
• firefox-l10n-60.7.1-1.mga6