Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:2996-1

Опубликовано: 04 окт. 2018
Источник: suse-cvrf

Описание

Security update for Mozilla Firefox

This update for Mozilla Firefox to version 60.2.2esr contains the following security fixes (MFSA 2018-24):

  • CVE-2018-12386: Type confusion in JavaScript allowed remote code execution (bsc#1110506)
  • CVE-2018-12387: Array.prototype.push stack pointer vulnerability may enable exploits in the sandboxed content process (bsc#1110507)

Список пакетов

openSUSE Leap 42.3
MozillaFirefox-60.2.2-118.1
MozillaFirefox-branding-upstream-60.2.2-118.1
MozillaFirefox-buildsymbols-60.2.2-118.1
MozillaFirefox-devel-60.2.2-118.1
MozillaFirefox-translations-common-60.2.2-118.1
MozillaFirefox-translations-other-60.2.2-118.1

Ссылки

Описание

A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process when triggered. This vulnerability affects Firefox ESR < 60.2.2 and Firefox < 62.0.3.

Затронутые продукты
openSUSE Leap 42.3:MozillaFirefox-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-branding-upstream-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-buildsymbols-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-devel-60.2.2-118.1
Ссылки

Описание

A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory address to the calling function which can be used as part of an exploit inside the sandboxed content process. This vulnerability affects Firefox ESR < 60.2.2 and Firefox < 62.0.3.

Затронутые продукты
openSUSE Leap 42.3:MozillaFirefox-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-branding-upstream-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-buildsymbols-60.2.2-118.1
openSUSE Leap 42.3:MozillaFirefox-devel-60.2.2-118.1
Ссылки