Security update for MozillaFirefox SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:1492-1 Final 1 1 2015-08-31T15:18:27Z current 2015-08-31T15:18:27Z 2015-08-31T15:18:27Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for MozillaFirefox MozillaFirefox was updated to version 40.0.3 to fix two security issues and several bugs. Changes in MozillaFirefox: - update to Firefox 40.0.3 (bnc#943550) * Disable the asynchronous plugin initialization (bmo#1198590) * Fix a segmentation fault in the GStreamer support (bmo#1145230) * Fix a regression with some Japanese fonts used in the <input> field (bmo#1194055) * On some sites, the selection in a select combox box using the mouse could be broken (bmo#1194733) security fixes * MFSA 2015-94/CVE-2015-4497 (bmo#1164766, bmo#1175278, bsc#943557) Use-after-free when resizing canvas element during restyling * MFSA 2015-95/CVE-2015-4498 (bmo#1042699, bsc#943558) Add-on notification bypass through data URLs The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2015-09/msg00000.html E-Mail link for openSUSE-SU-2015:1492-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings MozillaFirefox-40.0.3-85.2 MozillaFirefox-branding-upstream-40.0.3-85.2 MozillaFirefox-buildsymbols-40.0.3-85.2 MozillaFirefox-devel-40.0.3-85.2 MozillaFirefox-translations-common-40.0.3-85.2 MozillaFirefox-translations-other-40.0.3-85.2 Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets (CSS) token sequences for a CANVAS element. CVE-2015-4497 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2015-09/msg00000.html https://www.suse.com/security/cve/CVE-2015-4497.html CVE-2015-4497 https://bugzilla.suse.com/943550 SUSE Bug 943550 https://bugzilla.suse.com/943557 SUSE Bug 943557 https://bugzilla.suse.com/943608 SUSE Bug 943608 The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a crafted data: URL and triggering navigation to an arbitrary http: or https: URL at a certain early point in the installation process. CVE-2015-4498 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2015-09/msg00000.html https://www.suse.com/security/cve/CVE-2015-4498.html CVE-2015-4498 https://bugzilla.suse.com/943550 SUSE Bug 943550 https://bugzilla.suse.com/943558 SUSE Bug 943558 https://bugzilla.suse.com/943608 SUSE Bug 943608