Scientific Linux alert SLSA-2019:0671-1 (firefox)


From:
               Farhan Ahmed <fahmed@fnal.gov> 
To:
               <scientific-linux-errata@listserv.fnal.gov> 
Subject:
               Security ERRATA Critical: firefox on SL7.x x86_64 
Date:
               Wed, 27 Mar 2019 14:22:23 +0000
Message-ID:
               <20190327142223.23548.73135@slpackages.fnal.gov>
Synopsis: Critical: firefox security update
Advisory ID:       SLSA-2019:0671-1
Issue Date:        2019-03-27
CVE Numbers:       CVE-2019-9810
                   CVE-2019-9813
--

This update upgrades Firefox to version 60.6.1 ESR.

Security Fix(es):

* Mozilla: IonMonkey MArraySlice has incorrect alias information
(CVE-2019-9810)

* Mozilla: Ionmonkey type confusion with __proto__ mutations
(CVE-2019-9813)
--

SL7
  x86_64
    firefox-60.6.1-1.el7_6.x86_64.rpm
    firefox-debuginfo-60.6.1-1.el7_6.x86_64.rpm
    firefox-60.6.1-1.el7_6.i686.rpm
    firefox-debuginfo-60.6.1-1.el7_6.i686.rpm

- Scientific Linux Development Team

From:		Farhan Ahmed <fahmed@fnal.gov>
To:		<scientific-linux-errata@listserv.fnal.gov>
Subject:		Security ERRATA Critical: firefox on SL7.x x86_64
Date:		Wed, 27 Mar 2019 14:22:23 +0000
Message-ID:		<20190327142223.23548.73135@slpackages.fnal.gov>