SuSE Update For Mozilla OpenSUSE-SU-2014:0213-1 (Mozilla) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Updates for mozilla-nss (3.15.4) MozillaFirefox (24.3.0esr) MozillaThunderbird (24.3.0) including fixes for the following issues: * MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) * MFSA 2014-02/CVE-2014-1479 (bmo#911864) Clone protected content with XBL scopes * MFSA 2014-04/CVE-2014-1482 (bmo#943803) Incorrect use of discarded images by RasterImage * MFSA 2014-08/CVE-2014-1486 (bmo#942164) Use-after-free with imgRequestProxy and image proccessing * MFSA 2014-09/CVE-2014-1487 (bmo#947592) Cross-origin information leak through web workers * MFSA 2014-12/CVE-2014-1490/CVE-2014-1491 (bmo#934545, bmo#930874, bmo#930857) NSS ticket handling issues * MFSA 2014-13/CVE-2014-1481(bmo#936056) Inconsistent JavaScript handling of access to Window objects

Affected

Mozilla on openSUSE 11.4

References

http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00005.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-1740, CVE-2014-1477, CVE-2014-1478, CVE-2014-1479, CVE-2014-1481, CVE-2014-1482, CVE-2014-1486, CVE-2014-1487, CVE-2014-1490, CVE-2014-1491

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SuSE Update for Mozilla openSUSE-SU-2014:0213-1 (Mozilla)

Take action and discover your vulnerabilities