Overview

File _patchinfo of Package patchinfo.544

<patchinfo incident="544">
  <issue id="925368" tracker="bnc">VUL-0: MozillaFirefox: 37 release, 31.6ESR release</issue>
  <issue id="CVE-2015-0801" tracker="cve" />
  <issue id="CVE-2015-0807" tracker="cve" />
  <issue id="CVE-2015-0814" tracker="cve" />
  <issue id="CVE-2015-0815" tracker="cve" />
  <issue id="CVE-2015-0816" tracker="cve" />
  <issue id="CVE-2015-0813" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>pcerny</packager>
  <description>Mozilla Firefox was updated to 31.6.0 ESR to fix five security issues.

The following vulnerabilities were fixed:

* Miscellaneous memory safety hazards (MFSA 2015-30/CVE-2015-0814/CVE-2015-0815)
* Use-after-free when using the Fluendo MP3 GStreamer plugin (MFSA 2015-31/CVE-2015-0813)
* resource:// documents can load privileged pages (MFSA 2015-33/CVE-2015-0816)
* CORS requests should not follow 30x redirections after preflight (MFSA 2015-37/CVE-2015-0807)
* Same-origin bypass through anchor navigation (MFSA 2015-40/CVE-2015-0801)
</description>
  <summary>Security update for MozillaFirefox</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places