Scientific Linux alert SLSA-2019:0374-1 (firefox)


From:
               Scott Reid <svreid@fnal.gov> 
To:
               <scientific-linux-errata@listserv.fnal.gov> 
Subject:
               Security ERRATA Important: firefox on SL7.x x86_64 
Date:
               Thu, 21 Feb 2019 20:13:55 +0000
Message-ID:
               <20190221201355.6310.84830@slpackages.fnal.gov>
Synopsis:          Important: firefox security update
Advisory ID:       SLSA-2019:0374-1
Issue Date:        2019-02-21
CVE Numbers:       None
--

Security Fix(es):

This update upgrades Firefox to version 60.5.1 ESR.

Security Fix(es):

* chromium-browser, mozilla: Use after free in Skia (CVE-2018-18356)  *
mozilla: Integer overflow in Skia (CVE-2019-5785)
--

SL7
  x86_64
    firefox-60.5.1-1.el7_6.i686.rpm
    firefox-60.5.1-1.el7_6.x86_64.rpm
    firefox-debuginfo-60.5.1-1.el7_6.i686.rpm
    firefox-debuginfo-60.5.1-1.el7_6.x86_64.rpm

- Scientific Linux Development Team

From:		Scott Reid <svreid@fnal.gov>
To:		<scientific-linux-errata@listserv.fnal.gov>
Subject:		Security ERRATA Important: firefox on SL7.x x86_64
Date:		Thu, 21 Feb 2019 20:13:55 +0000
Message-ID:		<20190221201355.6310.84830@slpackages.fnal.gov>