MGASA-2015-0312

Description

Updated firefox packages fixes security vulnerabilities Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox (CVE-2015-4473, CVE-2015-4475, CVE-2015-4478, CVE-2015-4479, CVE-2015-4480, CVE-2015-4493, CVE-2015-4484, CVE-2015-4491, CVE-2015-4485, CVE-2015-4486, CVE-2015-4487, CVE-2015-4488, CVE-2015-4489, CVE-2015-4492)

Affected Systems

• mageia•firefox

  < 38.2.0-1.mga4

• mageia•firefox-l10n

  < 38.2.0-1.mga4

• mageia•nss

  < 3.19.3-1.mga4

• mageia•rootcerts

  < 20150709.00-1.mga4

• mageia•firefox

  < 38.2.0-1.mga5

• mageia•firefox-l10n

  < 38.2.0-1.mga5

• mageia•nss

  < 3.19.3-1.mga5

• mageia•rootcerts

  < 20150709.00-1.mga5

References (14)

• https://advisories.mageia.org/MGASA-2015-0312.html
• https://bugs.mageia.org/show_bug.cgi?id=16571
• https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.3_release_notes
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-79/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-80/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-82/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-83/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-87/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-88/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-89/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-90/
• https://www.mozilla.org/en-US/security/advisories/mfsa2015-92/
• https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
• https://rhn.redhat.com/errata/RHSA-2015-1586.html