Описание
ELSA-2016-0197: firefox security update (CRITICAL)
[38.6.1-1.0.1]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file
[38.6.1-1]
- Update to 38.6.1 ESR
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
firefox
38.6.1-1.0.1.el5_11
Oracle Linux i386
firefox
38.6.1-1.0.1.el5_11
Oracle Linux 6
Oracle Linux x86_64
firefox
38.6.1-1.0.1.el6_7
Oracle Linux i686
firefox
38.6.1-1.0.1.el6_7
Oracle Linux 7
Oracle Linux x86_64
firefox
38.6.1-1.0.1.el7_2
Связанные CVE
Связанные уязвимости
ELSA-2016-0594: graphite2 security, bug fix, and enhancement update (IMPORTANT)
Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.
Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.
Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not consider recursive load calls during a size check, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via a crafted Graphite smart font.
Code.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefo ...