Security update for MozillaFirefox
This update to MozillaFirefox 43.0.3 fixes the following issues:
* CVE-2015-7575: MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature, in combination wit NSS 3.20.2 [boo#959888]
Further fixes:
* workaround Youtube user agent detection issue (bmo#1233970)
* fix file download regression for multi user systems
-
Submitted by
Wolfgang Rosenauer (wrosenauer)
Fixed bugs
bnc#959888
VUL-0: CVE-2015-7575: mozilla-nss: TLS 1.2 RSA-mD5 downgrade attack
