Описание
Security update for MozillaFirefox
Mozilla Firefox was updated to 38.2.1 ESR, fixing two severe security bugs. (bsc#943608)
- MFSA 2015-94/CVE-2015-4497 (bsc#943557): Use-after-free when resizing canvas element during restyling
- MFSA 2015-95/CVE-2015-4498 (bsc#943558): Add-on notification bypass through data URLs
Список пакетов
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP2-LTSS
Ссылки
- Link for SUSE-SU-2015:1504-1
- E-Mail link for SUSE-SU-2015:1504-1
- SUSE Security Ratings
- SUSE Bug 943557
- SUSE Bug 943558
- SUSE Bug 943608
- SUSE CVE CVE-2015-4497 page
- SUSE CVE CVE-2015-4498 page
Описание
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets (CSS) token sequences for a CANVAS element.
Затронутые продукты
Ссылки
- CVE-2015-4497
- SUSE Bug 943550
- SUSE Bug 943557
- SUSE Bug 943608
Описание
The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a crafted data: URL and triggering navigation to an arbitrary http: or https: URL at a certain early point in the installation process.
Затронутые продукты
Ссылки
- CVE-2015-4498
- SUSE Bug 943550
- SUSE Bug 943558
- SUSE Bug 943608