Scientific Linux alert SLSA-2016:1912-1 (firefox)
| From: | Pat Riehecky <riehecky@fnal.gov> | |
| To: | <scientific-linux-errata@listserv.fnal.gov> | |
| Subject: | Security ERRATA Critical: firefox on SL5.x, SL6.x, SL7.x i386/x86_64 | |
| Date: | Wed, 21 Sep 2016 16:44:59 +0000 | |
| Message-ID: | <20160921164459.15135.24932@slpackages.fnal.gov> |
Synopsis: Critical: firefox security update Advisory ID: SLSA-2016:1912-1 Issue Date: 2016-09-21 CVE Numbers: CVE-2016-5261 CVE-2016-5250 CVE-2016-5257 CVE-2016-5278 CVE-2016-5270 CVE-2016-5272 CVE-2016-5276 CVE-2016-5274 CVE-2016-5277 CVE-2016-5280 CVE-2016-5281 CVE-2016-5284 -- This update upgrades Firefox to version 45.4.0 ESR. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-5257, CVE-2016-5278, CVE-2016-5270, CVE-2016-5272, CVE-2016-5274, CVE-2016-5276, CVE-2016-5277, CVE-2016-5280, CVE-2016-5281, CVE-2016-5284, CVE-2016-5250, CVE-2016-5261) -- SL5 x86_64 firefox-45.4.0-1.el5_11.i386.rpm firefox-45.4.0-1.el5_11.x86_64.rpm firefox-debuginfo-45.4.0-1.el5_11.i386.rpm firefox-debuginfo-45.4.0-1.el5_11.x86_64.rpm i386 firefox-45.4.0-1.el5_11.i386.rpm firefox-debuginfo-45.4.0-1.el5_11.i386.rpm SL6 x86_64 firefox-45.4.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.4.0-1.el6_8.x86_64.rpm firefox-45.4.0-1.el6_8.i686.rpm firefox-debuginfo-45.4.0-1.el6_8.i686.rpm i386 firefox-45.4.0-1.el6_8.i686.rpm firefox-debuginfo-45.4.0-1.el6_8.i686.rpm SL7 x86_64 firefox-45.4.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.4.0-1.el7_2.x86_64.rpm firefox-45.4.0-1.el7_2.i686.rpm firefox-debuginfo-45.4.0-1.el7_2.i686.rpm - Scientific Linux Development Team