Security update for MozillaFirefox SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:0607-1 Final 1 1 2015-03-22T15:28:31Z current 2015-03-22T15:28:31Z 2015-03-22T15:28:31Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for MozillaFirefox MozillaFirefox was updated to Firefox 36.0.4 to fix two critical security issues found during Pwn2Own: * MFSA 2015-28/CVE-2015-0818 (bmo#1144988) Privilege escalation through SVG navigation * MFSA 2015-29/CVE-2015-0817 (bmo#1145255) Code execution through incorrect JavaScript bounds checking elimination Als fixed were the following bugs: - Copy the icons to /usr/share/icons instead of symlinking them: in preparation for containerized apps (e.g. xdg-app) as well as AppStream metadata extraction, there are a couple locations that need to be real files for system integration (.desktop files, icons, mime-type info). - update to Firefox 36.0.1 Bugfixes: * Disable the usage of the ANY DNS query type (bmo#1093983) * Hello may become inactive until restart (bmo#1137469) * Print preferences may not be preserved (bmo#1136855) * Hello contact tabs may not be visible (bmo#1137141) * Accept hostnames that include an underscore character ('_') (bmo#1136616) * WebGL may use significant memory with Canvas2d (bmo#1137251) * Option -remote has been restored (bmo#1080319) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2015-03/msg00030.html E-Mail link for openSUSE-SU-2015:0607-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings MozillaFirefox-36.0.4-63.1 MozillaFirefox-branding-upstream-36.0.4-63.1 MozillaFirefox-buildsymbols-36.0.4-63.1 MozillaFirefox-devel-36.0.4-63.1 MozillaFirefox-translations-common-36.0.4-63.1 MozillaFirefox-translations-other-36.0.4-63.1 The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely skipped during JIT compilation and heap access, which allows remote attackers to read or write to unintended memory locations, and consequently execute arbitrary code, via crafted JavaScript. CVE-2015-0817 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-03/msg00030.html https://www.suse.com/security/cve/CVE-2015-0817.html CVE-2015-0817 https://bugzilla.suse.com/923495 SUSE Bug 923495 https://bugzilla.suse.com/923534 SUSE Bug 923534 Mozilla Firefox before 36.0.4, Firefox ESR 31.x before 31.5.3, and SeaMonkey before 2.33.1 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation. CVE-2015-0818 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-03/msg00030.html https://www.suse.com/security/cve/CVE-2015-0818.html CVE-2015-0818 https://bugzilla.suse.com/923495 SUSE Bug 923495 https://bugzilla.suse.com/923534 SUSE Bug 923534