Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2016.1963
SUSE Security Update: Security update for MozillaFirefox, Mo
zillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss
15 August 2016
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: MozillaFirefox
MozillaFirefox-branding-SLE
mozilla-nspr
mozilla-nss
Publisher: SUSE
Operating System: SUSE
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Cross-site Scripting -- Remote with User Interaction
Denial of Service -- Remote with User Interaction
Provide Misleading Information -- Remote with User Interaction
Access Confidential Data -- Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2016-6354 CVE-2016-5265 CVE-2016-5264
CVE-2016-5263 CVE-2016-5262 CVE-2016-5259
CVE-2016-5258 CVE-2016-5254 CVE-2016-5252
CVE-2016-2839 CVE-2016-2838 CVE-2016-2837
CVE-2016-2836 CVE-2016-2835 CVE-2016-2834
CVE-2016-2831 CVE-2016-2830 CVE-2016-2828
CVE-2016-2824 CVE-2016-2822 CVE-2016-2821
CVE-2016-2819 CVE-2016-2818 CVE-2016-2815
Reference: ASB-2016.0081
ASB-2016.0063
- --------------------------BEGIN INCLUDED TEXT--------------------
SUSE Security Update: Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss
______________________________________________________________________________
Announcement ID: SUSE-SU-2016:2061-1
Rating: important
References: #983549 #983638 #983639 #983643 #983646 #983651
#983652 #983653 #983655 #984006 #985659 #989196
#990628 #990856 #991809
Cross-References: CVE-2016-2815 CVE-2016-2818 CVE-2016-2819
CVE-2016-2821 CVE-2016-2822 CVE-2016-2824
CVE-2016-2828 CVE-2016-2830 CVE-2016-2831
CVE-2016-2834 CVE-2016-2835 CVE-2016-2836
CVE-2016-2837 CVE-2016-2838 CVE-2016-2839
CVE-2016-5252 CVE-2016-5254 CVE-2016-5258
CVE-2016-5259 CVE-2016-5262 CVE-2016-5263
CVE-2016-5264 CVE-2016-5265 CVE-2016-6354
Affected Products:
SUSE Linux Enterprise Server 11-SP2-LTSS
SUSE Linux Enterprise Debuginfo 11-SP2
______________________________________________________________________________
An update that fixes 24 vulnerabilities is now available.
Description:
MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr and mozilla-nss
were updated to fix nine security issues.
MozillaFirefox was updated to version 45.3.0 ESR. mozilla-nss was updated
to version 3.21.1, mozilla-nspr to version 4.12.
These security issues were fixed in 45.3.0ESR:
- CVE-2016-2835/CVE-2016-2836: Miscellaneous memory safety hazards
(rv:48.0 / rv:45.3) (MFSA 2016-62)
- CVE-2016-2830: Favicon network connection can persist when page is
closed (MFSA 2016-63)
- CVE-2016-2838: Buffer overflow rendering SVG with bidirectional content
(MFSA 2016-64)
- CVE-2016-2839: Cairo rendering crash due to memory allocation issue with
FFmpeg 0.10 (MFSA 2016-65)
- CVE-2016-5252: Stack underflow during 2D graphics rendering (MFSA
2016-67)
- CVE-2016-5254: Use-after-free when using alt key and toplevel menus
(MFSA 2016-70)
- CVE-2016-5258: Use-after-free in DTLS during WebRTC session shutdown
(MFSA 2016-72)
- CVE-2016-5259: Use-after-free in service workers with nested sync events
(MFSA 2016-73)
- CVE-2016-5262: Scripts on marquee tag can execute in sandboxed iframes
(MFSA 2016-76)
- CVE-2016-2837: Buffer overflow in ClearKey Content Decryption Module
(CDM) during video playback (MFSA 2016-77)
- CVE-2016-5263: Type confusion in display transformation (MFSA 2016-78)
- CVE-2016-5264: Use-after-free when applying SVG effects (MFSA 2016-79)
- CVE-2016-5265: Same-origin policy violation using local HTML file and
saved shortcut file (MFSA 2016-80)
- CVE-2016-6354: Fix for possible buffer overrun (bsc#990856)
Security issues fixed in 45.2.0.ESR:
- CVE-2016-2834: Memory safety bugs in NSS (MFSA 2016-61) (bsc#983639).
- CVE-2016-2824: Out-of-bounds write with WebGL shader (MFSA 2016-53)
(bsc#983651).
- CVE-2016-2822: Addressbar spoofing though the SELECT element (MFSA
2016-52) (bsc#983652).
- CVE-2016-2821: Use-after-free deleting tables from a contenteditable
document (MFSA 2016-51) (bsc#983653).
- CVE-2016-2819: Buffer overflow parsing HTML5 fragments (MFSA 2016-50)
(bsc#983655).
- CVE-2016-2828: Use-after-free when textures are used in WebGL operations
after recycle pool destruction (MFSA 2016-56) (bsc#983646).
- CVE-2016-2831: Entering fullscreen and persistent pointerlock without
user permission (MFSA 2016-58) (bsc#983643).
- CVE-2016-2815, CVE-2016-2818: Miscellaneous memory safety hazards (MFSA
2016-49) (bsc#983638)
These non-security issues were fixed:
- Fix crashes on aarch64
* Determine page size at runtime (bsc#984006)
* Allow aarch64 to work in safe mode (bsc#985659)
- Fix crashes on mainframes
- Temporarily bind Firefox to the first CPU as a hotfix for an apparent
race condition (bsc#989196, bsc#990628)
All extensions must now be signed by addons.mozilla.org. Please read
README.SUSE for more details.
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server 11-SP2-LTSS:
zypper in -t patch slessp2-MozillaFirefox-12690=1
- SUSE Linux Enterprise Debuginfo 11-SP2:
zypper in -t patch dbgsp2-MozillaFirefox-12690=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server 11-SP2-LTSS (i586 s390x x86_64):
MozillaFirefox-45.3.0esr-48.1
MozillaFirefox-branding-SLED-45.0-20.38
MozillaFirefox-translations-45.3.0esr-48.1
firefox-fontconfig-2.11.0-4.2
libfreebl3-3.21.1-26.2
mozilla-nspr-4.12-25.2
mozilla-nspr-devel-4.12-25.2
mozilla-nss-3.21.1-26.2
mozilla-nss-devel-3.21.1-26.2
mozilla-nss-tools-3.21.1-26.2
- SUSE Linux Enterprise Server 11-SP2-LTSS (s390x x86_64):
libfreebl3-32bit-3.21.1-26.2
mozilla-nspr-32bit-4.12-25.2
mozilla-nss-32bit-3.21.1-26.2
- SUSE Linux Enterprise Debuginfo 11-SP2 (i586 s390x x86_64):
MozillaFirefox-debuginfo-45.3.0esr-48.1
MozillaFirefox-debugsource-45.3.0esr-48.1
firefox-fontconfig-debuginfo-2.11.0-4.2
mozilla-nspr-debuginfo-4.12-25.2
mozilla-nspr-debugsource-4.12-25.2
mozilla-nss-debuginfo-3.21.1-26.2
mozilla-nss-debugsource-3.21.1-26.2
- SUSE Linux Enterprise Debuginfo 11-SP2 (s390x x86_64):
firefox-fontconfig-debugsource-2.11.0-4.2
mozilla-nspr-debuginfo-32bit-4.12-25.2
mozilla-nss-debuginfo-32bit-3.21.1-26.2
References:
https://www.suse.com/security/cve/CVE-2016-2815.html
https://www.suse.com/security/cve/CVE-2016-2818.html
https://www.suse.com/security/cve/CVE-2016-2819.html
https://www.suse.com/security/cve/CVE-2016-2821.html
https://www.suse.com/security/cve/CVE-2016-2822.html
https://www.suse.com/security/cve/CVE-2016-2824.html
https://www.suse.com/security/cve/CVE-2016-2828.html
https://www.suse.com/security/cve/CVE-2016-2830.html
https://www.suse.com/security/cve/CVE-2016-2831.html
https://www.suse.com/security/cve/CVE-2016-2834.html
https://www.suse.com/security/cve/CVE-2016-2835.html
https://www.suse.com/security/cve/CVE-2016-2836.html
https://www.suse.com/security/cve/CVE-2016-2837.html
https://www.suse.com/security/cve/CVE-2016-2838.html
https://www.suse.com/security/cve/CVE-2016-2839.html
https://www.suse.com/security/cve/CVE-2016-5252.html
https://www.suse.com/security/cve/CVE-2016-5254.html
https://www.suse.com/security/cve/CVE-2016-5258.html
https://www.suse.com/security/cve/CVE-2016-5259.html
https://www.suse.com/security/cve/CVE-2016-5262.html
https://www.suse.com/security/cve/CVE-2016-5263.html
https://www.suse.com/security/cve/CVE-2016-5264.html
https://www.suse.com/security/cve/CVE-2016-5265.html
https://www.suse.com/security/cve/CVE-2016-6354.html
https://bugzilla.suse.com/983549
https://bugzilla.suse.com/983638
https://bugzilla.suse.com/983639
https://bugzilla.suse.com/983643
https://bugzilla.suse.com/983646
https://bugzilla.suse.com/983651
https://bugzilla.suse.com/983652
https://bugzilla.suse.com/983653
https://bugzilla.suse.com/983655
https://bugzilla.suse.com/984006
https://bugzilla.suse.com/985659
https://bugzilla.suse.com/989196
https://bugzilla.suse.com/990628
https://bugzilla.suse.com/990856
https://bugzilla.suse.com/991809
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
http://www.auscert.org.au/render.html?cid=1980
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=lzra
-----END PGP SIGNATURE-----