|
|
Subscribe / Log in / New account

Mageia alert MGASA-2018-0396 (firefox)



From:
              Mageia Updates <buildsystem-daemon@mageia.org> 


To:
              updates-announce@ml.mageia.org 


Subject:
              [updates-announce] MGASA-2018-0396: Updated firefox packages fix security vulnerabilities 


Date:
              Sun, 14 Oct 2018 02:59:26 +0200


Message-ID:
              <20181014005926.8C7259FE7A@duvel.mageia.org>


MGASA-2018-0396 - Updated firefox packages fix security vulnerabilities

Publication date: 14 Oct 2018
URL: https://advisories.mageia.org/MGASA-2018-0396.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2018-12386,
     CVE-2018-12387

Description:
Updated firefox packages fix security vulnerabilities:

A vulnerability in register allocation in JavaScript can lead to type
confusion, allowing for an arbitrary read and write. This leads to remote
code execution inside the sandboxed content process when triggered
(CVE-2018-12386).

A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push
with multiple arguments that results in the stack pointer being off by 8 bytes
after a bailout. This leaks a memory address to the calling function which can
be used as part of an exploit inside the sandboxed content process
(CVE-2018-12387).

References:
- https://bugs.mageia.org/show_bug.cgi?id=23653
- https://www.mozilla.org/en-US/security/advisories/mfsa201...
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1...
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1...

SRPMS:
- 6/core/firefox-60.2.2-1.mga6
- 6/core/firefox-l10n-60.2.2-1.mga6
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds