MGASA-2016-0220

Description

Updated firefox packages fix security vulnerabilities Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox (CVE-2016-2818, CVE-2016-2819, CVE-2016-2821, CVE-2016-2822, CVE-2016-2828, CVE-2016-2831). This update provides the next stable branch of Firefox, version 45.2.0.

Affected Systems

• mageia•firefox

  < 45.2.0-1.mga5

• mageia•firefox-l10n

  < 45.2.0-1.mga5

• mageia•nss

  < 3.24.0-1.mga5

References (11)

• https://advisories.mageia.org/MGASA-2016-0220.html
• https://bugs.mageia.org/show_bug.cgi?id=18654
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-49/
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-50/
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-51/
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-52/
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-56/
• https://www.mozilla.org/en-US/security/advisories/mfsa2016-58/
• https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
• https://www.mozilla.org/en-US/firefox/45.2.0/releasenotes/
• https://rhn.redhat.com/errata/RHSA-2016-1217.html