Overview

File _patchinfo of Package patchinfo.4679

<patchinfo incident="4679">
  <packager>wrosenauer</packager>
  <issue tracker="cve" id="2016-5287"></issue>
  <issue tracker="cve" id="2016-5288"></issue>
  <issue tracker="bnc" id="1006475">VUL-0: CVE-2016-5287: MozillaFirefox: Crash in nsTArray_base (MFSA 2016-87)</issue>
  <issue tracker="bnc" id="1006476">VUL-0: CVE-2016-5288: MozillaFirefox: Web content can read cache entries (MFSA 2016-87)</issue>
  <category>security</category>
  <rating>important</rating>
  <summary>Security update for Mozilla Firefox</summary>
  <description>Mozilla Firefox was updated to 49.0.2 to fix two security issues and some bugs.

   The following vulnerabilities were fixed:

   * CVE-2016-5287: Crash in nsTArray_base (bsc#1006475)
   * CVE-2016-5288: Web content can read cache entries (bsc#1006476)

   The following changes and fixes are included:

   * Asynchronous rendering of the Flash plugins is now enabled by default
   * Change D3D9 default fallback preference to prevent graphical artifacts
   * Network issue prevents some users from seeing the Firefox UI on startup
   * Web compatibility issue with file uploads
   * Web compatibility issue with Array.prototype.values
   * Diagnostic information on timing for tab switching
   * Fix a Canvas filters graphics issue affecting HTML5 apps</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places