 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.884315 |
| Kategorie: | CentOS Local Security Checks |
| Titel: | CentOS: Security Advisory for firefox (CESA-2024:0976) |
| Zusammenfassung: | The remote host is missing an update for the 'firefox'; package(s) announced via the CESA-2024:0976 advisory. |
| Beschreibung: | Summary: The remote host is missing an update for the 'firefox' package(s) announced via the CESA-2024:0976 advisory. Vulnerability Insight: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This Update upgrades Firefox to version 115.8.0 ESR. Security Fix(es): * Mozilla: Out-of-bounds memory read in networking channels (CVE-2024-1546) * Mozilla: Alert dialog could have been spoofed on another site (CVE-2024-1547) * Mozilla: Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8 (CVE-2024-1553) * Mozilla: Fullscreen Notification could have been hidden by select element (CVE-2024-1548) * Mozilla: Custom cursor could obscure the permission dialog (CVE-2024-1549) * Mozilla: Mouse cursor re-positioned unexpectedly could have led to unintended permission grants (CVE-2024-1550) * Mozilla: Multipart HTTP Responses would accept the Set-Cookie header in response parts (CVE-2024-1551) * Mozilla: Incorrect code generation on 32-bit ARM devices (CVE-2024-1552) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'firefox' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:C/A:N |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2024-1546 https://bugzilla.mozilla.org/show_bug.cgi?id=1843752 https://www.mozilla.org/security/advisories/mfsa2024-05/ https://www.mozilla.org/security/advisories/mfsa2024-06/ https://www.mozilla.org/security/advisories/mfsa2024-07/ https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html Common Vulnerability Exposure (CVE) ID: CVE-2024-1547 https://bugzilla.mozilla.org/show_bug.cgi?id=1877879 Common Vulnerability Exposure (CVE) ID: CVE-2024-1553 Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286 Common Vulnerability Exposure (CVE) ID: CVE-2024-1548 https://bugzilla.mozilla.org/show_bug.cgi?id=1832627 Common Vulnerability Exposure (CVE) ID: CVE-2024-1549 https://bugzilla.mozilla.org/show_bug.cgi?id=1833814 Common Vulnerability Exposure (CVE) ID: CVE-2024-1550 https://bugzilla.mozilla.org/show_bug.cgi?id=1860065 Common Vulnerability Exposure (CVE) ID: CVE-2024-1551 https://bugzilla.mozilla.org/show_bug.cgi?id=1864385 Common Vulnerability Exposure (CVE) ID: CVE-2024-1552 https://bugzilla.mozilla.org/show_bug.cgi?id=1874502 |
| Copyright | Copyright (C) 2024 Greenbone AG |
| Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |