Debian Bug report logs -
#953270
libusrsctp: CVE-2019-20503
Package:
src:libusrsctp;
Maintainer for src:libusrsctp is Debian VoIP Team <pkg-voip-maintainers@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 6 Mar 2020 20:48:02 UTC
Severity: grave
Tags: security, upstream
Fou ...
Firefox could be made to crash or run programs as your login if it
opened a malicious website ...
Several security issues were fixed in Thunderbird ...
Several security issues were fixed in Thunderbird ...
The Mozilla Foundation Security Advisory describes this flaw as: When removing data about an origin whose tab was recently closed, a use-after-free could occur in the Quota manager, resulting in a potentially exploitable crash (CVE-2020-6805)
The Mozilla Foundation Security Advisory describes this flaw as: The inputs to `sctp_load_addresses_from_i ...
Synopsis
Important: thunderbird security update
Type/Severity
Security Advisory: Important
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Synopsis
Important: thunderbird security update
Type/Severity
Security Advisory: Important
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Synopsis
Important: firefox security update
Type/Severity
Security Advisory: Important
Topic
An update for firefox is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerabili ...
Synopsis
Important: firefox security update
Type/Severity
Security Advisory: Important
Topic
An update for firefox is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...
Synopsis
Important: firefox security update
Type/Severity
Security Advisory: Important
Topic
An update for firefox is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...
Synopsis
Important: thunderbird security update
Type/Severity
Security Advisory: Important
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Synopsis
Important: firefox security update
Type/Severity
Security Advisory: Important
Topic
An update for firefox is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...
Synopsis
Important: thunderbird security update
Type/Severity
Security Advisory: Important
Topic
An update for thunderbird is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vul ...
Synopsis
Important: chromium-browser security update
Type/Severity
Security Advisory: Important
Topic
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Multiple security issues have been found in Thunderbird which could
potentially result in the execution of arbitrary code
For the oldstable distribution (stretch), these problems have been fixed
in version 1:6860-1~deb9u1
For the stable distribution (buster), these problems have been fixed in
version 1:6860-1~deb10u1
We recommend that you up ...
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code
For the oldstable distribution (stretch), these problems have been fixed
in version 6860esr-1~deb9u1
For the stable distribution (buster), these problems have been fixed in
version 6860esr-1~deb10u1
W ...
Several vulnerabilities have been discovered in the chromium web browser
CVE-2019-20503
Natalie Silvanovich discovered an out-of-bounds read issue in the usrsctp
library
CVE-2020-6422
David Manouchehri discovered a use-after-free issue in the WebGL
implementation
CVE-2020-6424
Sergei Glazunov discovered a use-after-free issue ...
An out-of-bounds read has been found in Firefox before 74 The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters; however, the two functions handled parameter bounds differently, resulting in out of bounds reads when parameters are partially outside a chunk ...
Mozilla Foundation Security Advisory 2020-09
Security Vulnerabilities fixed in Firefox ESR 686
Announced
March 10, 2020
Impact
high
Products
Firefox ESR
Fixed in
Firefox ESR 686
...
Mozilla Foundation Security Advisory 2020-10
Security Vulnerabilities fixed in Thunderbird 686
Announced
March 10, 2020
Impact
high
Products
Thunderbird
Fixed in
Thunderbird 686
...
Mozilla Foundation Security Advisory 2020-08
Security Vulnerabilities fixed in Firefox 74
Announced
March 10, 2020
Impact
high
Products
Firefox
Fixed in
Firefox 74
...
The stable channel has been updated to 8003987149 for Windows, Mac, and Linux, which will roll out over the coming days/weeks
A list of all changes is available in the log Interested in switching release channels? Find out how If you find a new issue, please let us know by filing a bug The community help forum is also a great pla ...