[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2015:1476-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":46,"duplicates":47,"related":48,"reserved_at":9,"published_at":65,"modified_at":66,"state":9,"summary":67,"references_raw":69,"kevs":158,"epss":9,"epss_history":159,"metrics":160,"affected":161},"SUSE-SU-2015:1476-1","Security update for MozillaFirefox, mozilla-nss\n\n\nMozilla Firefox was updated to version 38.2.1 ESR to fix several\ncritical and non critical security vulnerabilities.\n\n- Firefox was updated to 38.2.1 ESR (bsc#943608)\n  * MFSA 2015-94/CVE-2015-4497 (bsc#943557)\n    Use-after-free when resizing canvas element during restyling\n  * MFSA 2015-95/CVE-2015-4498 (bsc#943558)\n    Add-on notification bypass through data URLs\n\n- Firefox was updated to 38.2.0 ESR (bsc#940806)\n  * MFSA 2015-78/CVE-2015-4495\n    (bmo#1178058, bmo#1179262)\n    Same origin violation and local file stealing via PDF reader\n  * MFSA 2015-79/CVE-2015-4473/CVE-2015-4474\n    (bmo#1143130, bmo#1161719, bmo#1177501, bmo#1181204,\n     bmo#1184068, bmo#1188590, bmo#1146213, bmo#1178890,\n     bmo#1182711)\n    Miscellaneous memory safety hazards (rv:40.0 / rv:38.2)\n  * MFSA 2015-80/CVE-2015-4475\n    (bmo#1175396)\n    Out-of-bounds read with malformed MP3 file\n  * MFSA 2015-82/CVE-2015-4478\n    (bmo#1105914)\n    Redefinition of non-configurable JavaScript object properties\n  * MFSA 2015-83/CVE-2015-4479\n    (bmo#1185115, bmo#1144107, bmo#1170344, bmo#1186718)\n    Overflow issues in libstagefright\n  * MFSA 2015-87/CVE-2015-4484\n    (bmo#1171540)\n    Crash when using shared memory in JavaScript\n  * MFSA 2015-88/CVE-2015-4491\n    (bmo#1184009)\n    Heap overflow in gdk-pixbuf when scaling bitmap images\n  * MFSA 2015-89/CVE-2015-4485/CVE-2015-4486\n    (bmo#1177948, bmo#1178148)\n    Buffer overflows on Libvpx when decoding WebM video\n  * MFSA 2015-90/CVE-2015-4487/CVE-2015-4488/CVE-2015-4489\n    (bmo#1176270, bmo#1182723, bmo#1171603)\n    Vulnerabilities found through code inspection\n  * MFSA 2015-92/CVE-2015-4492\n    (bmo#1185820)\n    Use-after-free in XMLHttpRequest with shared workers\n\nMozilla NSS switched the CKBI ABI from 1.98 to 2.4, which is what Firefox 38ESR uses.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44],{"_key":15},"CVE-2015-4473",{"_key":17},"CVE-2015-4474",{"_key":19},"CVE-2015-4475",{"_key":21},"CVE-2015-4478",{"_key":23},"CVE-2015-4479",{"_key":25},"CVE-2015-4484",{"_key":27},"CVE-2015-4485",{"_key":29},"CVE-2015-4486",{"_key":31},"CVE-2015-4487",{"_key":33},"CVE-2015-4488",{"_key":35},"CVE-2015-4489",{"_key":37},"CVE-2015-4491",{"_key":39},"CVE-2015-4492",{"_key":41},"CVE-2015-4495",{"_key":43},"CVE-2015-4497",{"_key":45},"CVE-2015-4498",[],[],[49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},"2015-09-01T17:33:17Z","2026-02-04T03:49:29.270113Z",{"cisa_kev":68,"cisa_ransomware":68,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[70,76,81,85,89,93,98,102,106,110,114,118,122,126,130,134,138,142,146,150,154],{"url":71,"sources":72,"tags":74},"https://www.suse.com/support/update/announcement/2015/suse-su-20151476-1/",[73],"osv_suse",[75],"Advisory",{"url":77,"sources":78,"tags":79},"https://bugzilla.suse.com/940806",[73],[80],"REPORT",{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/943557",[73],[80],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/943558",[73],[80],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/943608",[73],[80],{"url":94,"sources":95,"tags":96},"https://www.suse.com/security/cve/CVE-2015-4473",[73],[97],"WEB",{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2015-4474",[73],[97],{"url":103,"sources":104,"tags":105},"https://www.suse.com/security/cve/CVE-2015-4475",[73],[97],{"url":107,"sources":108,"tags":109},"https://www.suse.com/security/cve/CVE-2015-4478",[73],[97],{"url":111,"sources":112,"tags":113},"https://www.suse.com/security/cve/CVE-2015-4479",[73],[97],{"url":115,"sources":116,"tags":117},"https://www.suse.com/security/cve/CVE-2015-4484",[73],[97],{"url":119,"sources":120,"tags":121},"https://www.suse.com/security/cve/CVE-2015-4485",[73],[97],{"url":123,"sources":124,"tags":125},"https://www.suse.com/security/cve/CVE-2015-4486",[73],[97],{"url":127,"sources":128,"tags":129},"https://www.suse.com/security/cve/CVE-2015-4487",[73],[97],{"url":131,"sources":132,"tags":133},"https://www.suse.com/security/cve/CVE-2015-4488",[73],[97],{"url":135,"sources":136,"tags":137},"https://www.suse.com/security/cve/CVE-2015-4489",[73],[97],{"url":139,"sources":140,"tags":141},"https://www.suse.com/security/cve/CVE-2015-4491",[73],[97],{"url":143,"sources":144,"tags":145},"https://www.suse.com/security/cve/CVE-2015-4492",[73],[97],{"url":147,"sources":148,"tags":149},"https://www.suse.com/security/cve/CVE-2015-4495",[73],[97],{"url":151,"sources":152,"tags":153},"https://www.suse.com/security/cve/CVE-2015-4497",[73],[97],{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2015-4498",[73],[97],[],[],[],[162,175,179,183,187,194,198,202,209,213,217],{"ecosystem":163,"name":164,"vendor":165,"product":166,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":166,"source":9,"versions":168},"SUSE Linux Enterprise","mozilla-nss","suse","mozilla-nss&distro=SUSE Linux Enterprise Desktop 12","rpm",[169],{"version":170,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":173,"version_end_type":174,"fixed_in":9},"lt3_19_2_0_26_2",true,"ecosystem","3.19.2.0-26.2","excluding",{"ecosystem":163,"name":164,"vendor":165,"product":176,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":176,"source":9,"versions":177},"mozilla-nss&distro=SUSE Linux Enterprise Server 12",[178],{"version":170,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":173,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":164,"vendor":165,"product":180,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":180,"source":9,"versions":181},"mozilla-nss&distro=SUSE Linux Enterprise Server for SAP Applications 12",[182],{"version":170,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":173,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":164,"vendor":165,"product":184,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":184,"source":9,"versions":185},"mozilla-nss&distro=SUSE Linux Enterprise Software Development Kit 12",[186],{"version":170,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":173,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":188,"vendor":165,"product":189,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":189,"source":9,"versions":190},"MozillaFirefox-branding-SLE","MozillaFirefox-branding-SLE&distro=SUSE Linux Enterprise Desktop 12",[191],{"version":192,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":193,"version_end_type":174,"fixed_in":9},"lt31_0_14_1","31.0-14.1",{"ecosystem":163,"name":188,"vendor":165,"product":195,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":195,"source":9,"versions":196},"MozillaFirefox-branding-SLE&distro=SUSE Linux Enterprise Server 12",[197],{"version":192,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":193,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":188,"vendor":165,"product":199,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":199,"source":9,"versions":200},"MozillaFirefox-branding-SLE&distro=SUSE Linux Enterprise Server for SAP Applications 12",[201],{"version":192,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":193,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":203,"vendor":165,"product":204,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":204,"source":9,"versions":205},"MozillaFirefox","MozillaFirefox&distro=SUSE Linux Enterprise Desktop 12",[206],{"version":207,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":174,"fixed_in":9},"lt38_2_1esr_45_1","38.2.1esr-45.1",{"ecosystem":163,"name":203,"vendor":165,"product":210,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":210,"source":9,"versions":211},"MozillaFirefox&distro=SUSE Linux Enterprise Server 12",[212],{"version":207,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":203,"vendor":165,"product":214,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":214,"source":9,"versions":215},"MozillaFirefox&distro=SUSE Linux Enterprise Server for SAP Applications 12",[216],{"version":207,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":174,"fixed_in":9},{"ecosystem":163,"name":203,"vendor":165,"product":218,"cpe_part":9,"purl_type":167,"purl_namespace":165,"purl_name":218,"source":9,"versions":219},"MozillaFirefox&distro=SUSE Linux Enterprise Software Development Kit 12",[220],{"version":207,"is_range":171,"range_type":172,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":174,"fixed_in":9}]