Synopsis
Important: thunderbird security update
Type/Severity
Security Advisory: Important
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerab ...
Synopsis
Critical: firefox security update
Type/Severity
Security Advisory: Critical
Topic
An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scori ...
Synopsis
Important: graphite2 security update
Type/Severity
Security Advisory: Important
Topic
An update for graphite2 is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sc ...
graphite2 could be made to crash or run programs if it opened a specially
crafted font ...
Several security issues were fixed in Thunderbird ...
Firefox could be made to crash or run programs as your login if it
opened a malicious website ...
Multiple vulnerabilities have been found in the Graphite font rendering
engine which might result in denial of service or the execution of
arbitrary code if a malformed font file is processed
For the oldstable distribution (jessie), these problems have been fixed
in version 1310-1~deb8u1
For the stable distribution (stretch), these problems hav ...
Multiple security issues have been found in Thunderbird, which may lead
to the execution of arbitrary code or denial of service
Debian follows the extended support releases (ESR) of Thunderbird
Support for the 45x series has ended, so starting with this update
we're now following the 52x releases
For the oldstable distribution (jessie), these ...
Vulnerabilities in the Graphite 2 library (MFSA 2017-16)A heap-based buffer overflow flaw related to "lz4::decompress" has been reported in graphite2 An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code (CVE-2017-7778)
Heap-buffer-overflow write "lz4::decompress" (src/Decompressor)A heap-based buffer overflow ...
A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory These issues were addressed in Graphite 2 version 1310 This vulnerability affects Firefox < 54, Firefox ESR < 522, and Thunderbird < 522 ...
An out-of-bounds write has been found in the Graphite 2 library used in Firefox < 540 and Thunderbird < 522, in lz4::decompress ...
Mozilla Foundation Security Advisory 2017-16
Security vulnerabilities fixed in Firefox ESR 522
Announced
June 13, 2017
Impact
critical
Products
Firefox ESR
Fixed in
Firefox ESR 522
...
Mozilla Foundation Security Advisory 2017-15
Security vulnerabilities fixed in Firefox 54
Announced
June 13, 2017
Impact
critical
Products
Firefox
Fixed in
Firefox 54
...
Mozilla Foundation Security Advisory 2017-17
Security vulnerabilities fixed in Thunderbird 522
Announced
June 14, 2017
Impact
critical
Products
Thunderbird
Fixed in
Thunderbird 522
...