- Home
- CVEs with nessus.description==This update upgrades Firefox to version 60.1.0 ESR.
Many older firefox extensions must be updated to work with this new release.
Security Fix(es) :
- Mozilla: Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, and Firefox ESR 52.9 (CVE-2018-5188)
- Mozilla: Buffer overflow using computed size of canvas element (CVE-2018-12359)
- Mozilla: Use-after-free using focus() (CVE-2018-12360)
- Mozilla: Media recorder segmentation fault when track type is changed during capture (CVE-2018-5156)
- Skia: Heap buffer overflow rasterizing paths in SVG (CVE-2018-6126)
- Mozilla: Integer overflow in SSSE3 scaler (CVE-2018-12362)
- Mozilla: Use-after-free when appending DOM nodes (CVE-2018-12363)
- Mozilla: CSRF attacks through 307 redirects and NPAPI plugins (CVE-2018-12364)
- Mozilla: address bar username and password spoofing in reader mode (CVE-2017-7762)
- Mozilla: Compromised IPC child process can list local filenames (CVE-2018-12365)
- Mozilla: Invalid data handling during QCMS transformations (CVE-2018-12366)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top