[go: up one dir, main page]
|
|
Subscribe / Log in / New account

Search results

Query:
Filters:
Content typeCategories
 LWN Feature article
 Guest article
 News item
 Email item
 Security alert
 Security vulnerability
 Kernel patch
 Comment		  Announcements
 Briefs
 Commerce
 Development
 Distributions
 Front
 Kernel
 Legal
 Letters
 Press
 Security
Order by: relevance date

Search results

SUSE security update to firefox-esr
([Security] Posted Dec 16, 2024 14:04 UTC (Mon) by jake )

CVE-2017-7833
  * CVE-2017-7834
  * CVE-2017-7835
  * CVE-2017-7836
  * CVE-2017-7837
  * CVE-2017-7838
  * CVE-2017-7839
  * CVE-2017-7840
  * CVE-2017-7842
  * CVE-2017-7843
  * CVE-2017-7844
  * CVE-2018-12358
  * CVE-2018-12359
  * CVE-2018-12360
  * CVE-2018-12361
  * CVE-2018-12362
  * CVE-2018-12363
  * CVE-2018-12364
  * CVE-2018-12365
  * CVE-2018-12366
  * CVE-2018-12367
  * CVE-2018-12369
  * CVE-2018-12370
  * CVE-2018-12371
  * CVE-2018-12375
  * CVE-2018-12376
  * CVE-2018-12377
  * CVE-2018-12378
  * CVE-2018-12379
  * CVE-2018-12381
  * CVE-2018-12382
  * CVE-2018-12383
  * CVE-2018-12385
  * CVE-2018-12386
  * CVE-2018-12387
  * CVE-2018-12388
  * CVE-2018-12390
  * CVE-2018-12391
  * CVE-2018-12392
  * CVE-2018-12393
  * CVE-2018-12395
  * CVE-2018-12396
  * CVE-2018-12397
  * CVE-2018-12398
  * CVE-2018-12399
  * CVE-2018-12400
  * CVE-2018-12401
  * CVE-2018-12402
  * CVE-2018-12403
  * CVE-2018-12405
  * CVE-2018-12406
  * CVE-2018-12407
  * CVE-2018-17466
  * CVE-2018-18356
  * CVE-2018-18492
  * CVE-2018-18493
  * CVE-2018-18494
  * CVE-2018-18495
  * CVE-2018-18496
  * CVE-2018-18497
  * CVE-2018-18498
  * CVE-2018-18500
  * CVE-2018-18501
  * CVE-2018-18502
  * CVE-2018-18503
  * CVE-2018-18504

Arch Linux security update to firefox
([Security] Posted Feb 12, 2019 15:41 UTC (Tue) by ris )

CVE-ID  : CVE-2018-18500 CVE-2018-18501 CVE-2018-18502 CVE-2018-18503
          CVE-2018-18504 CVE-2018-18505 CVE-2018-18506
Package : firefox
Type    : multiple issues
Remote  : Yes
Link    :  https://security.archlinux.org/AVG-862 

Summary
=======

The package firefox before version 65.0-1 is vulnerable to multiple
issues including arbitrary code

Ubuntu security update to firefox
([Security] Posted Jan 31, 2019 14:53 UTC (Thu) by jake )

CVE-2018-18505)

It was discovered that Firefox allowed PAC files to specify that requests
to localhost are sent through the proxy to another server. If proxy
auto-detection is enabled, an attacker could potentially exploit this to
conduct attacks on local services and tools. (CVE-2018-18506)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  firefox                         65.0+build2-0ubuntu0.18.10.1

Ubuntu 18.04 LTS:
  firefox                         65.0+build2-0ubuntu0.18.04.1

Ubuntu 16.04 LTS:
  firefox                         65.0+build2-0ubuntu0.16.04.1

Ubuntu 14.04 LTS:
  firefox                         65.0+build2-0ubuntu0.14.04.1

After a standard system update you need to restart Firefox to make
all the necessary changes.

References:
   https://usn.ubuntu.com/usn/usn-3874-1 
  CVE-2018-18500, CVE-2018-18501, CVE-2018-18502, CVE-2018-18503,
  CVE-2018-18504

Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds