Описание
Security update for MozillaFirefox, mozilla-nss
This update for MozillaFirefox, mozilla-nss fixes security issues and bugs.
The following vulnerabilities were fixed in Firefox ESR 45.5 (bsc#1009026):
- CVE-2016-5297: Incorrect argument length checking in Javascript (bsc#1010401)
- CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (bsc#1010404)
- CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1 (bsc#1010395)
- CVE-2016-9064: Addons update must verify IDs match between current and new versions (bsc#1010402)
- CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR 45.5 (bsc#1010427)
- CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file (bsc#1010410)
The following vulnerabilities were fixed in mozilla-nss 3.21.3:
- CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler (bsc#1010422)
- CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime causes server crash (bsc#1010517)
The following bugs were fixed:
- Firefox would fail to go into fullscreen mode with some window managers (bsc#992549)
The Mozilla Firefox changelog was amended to document patched dropped in a previous update.
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
Ссылки
- Link for SUSE-SU-2016:3014-1
- E-Mail link for SUSE-SU-2016:3014-1
- SUSE Security Ratings
- SUSE Bug 1009026
- SUSE Bug 1010395
- SUSE Bug 1010401
- SUSE Bug 1010402
- SUSE Bug 1010404
- SUSE Bug 1010410
- SUSE Bug 1010422
- SUSE Bug 1010427
- SUSE Bug 1010517
- SUSE Bug 992549
- SUSE CVE CVE-2016-5285 page
- SUSE CVE CVE-2016-5290 page
- SUSE CVE CVE-2016-5291 page
- SUSE CVE CVE-2016-5296 page
- SUSE CVE CVE-2016-5297 page
- SUSE CVE CVE-2016-9064 page
- SUSE CVE CVE-2016-9066 page
Описание
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.
Затронутые продукты
Ссылки
- CVE-2016-5285
- SUSE Bug 1010517
Описание
Memory safety bugs were reported in Firefox 49 and Firefox ESR 45.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-5290
- SUSE Bug 1009026
- SUSE Bug 1010427
Описание
A same-origin policy bypass with local shortcut files to load arbitrary local content from disk. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-5291
- SUSE Bug 1009026
- SUSE Bug 1010410
Описание
A heap-buffer-overflow in Cairo when processing SVG content caused by compiler optimization, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-5296
- SUSE Bug 1009026
- SUSE Bug 1010395
Описание
An error in argument length checking in JavaScript, leading to potential integer overflows or other bounds checking issues. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-5297
- SUSE Bug 1009026
- SUSE Bug 1010401
Описание
Add-on updates failed to verify that the add-on ID inside the signed package matched the ID of the add-on being updated. An attacker who could perform a man-in-the-middle attack on the user's connection to the update server and defeat the certificate pinning protection could provide a malicious signed add-on instead of a valid update. This vulnerability affects Firefox ESR < 45.5 and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-9064
- SUSE Bug 1009026
- SUSE Bug 1010402
Описание
A buffer overflow resulting in a potentially exploitable crash due to memory allocation issues when handling large amounts of incoming data. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-9066
- SUSE Bug 1009026
- SUSE Bug 1010404
Описание
An existing mitigation of timing side-channel attacks is insufficient in some circumstances. This issue is addressed in Network Security Services (NSS) 3.26.1. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Firefox < 50.
Затронутые продукты
Ссылки
- CVE-2016-9074
- SUSE Bug 1009026
- SUSE Bug 1010422