Request 687818: Incident MozillaFirefox - openSUSE Build Service

Overview

Request 687818 accepted

- Mozilla Firefox 60.6.1esr
MFSA 2019-10 (bsc#1130262)
* CVE-2019-9810 (bmo#1537924)
IonMonkey MArraySlice has incorrect alias information
* CVE-2019-9813 (bmo#1538006)
Ionmonkey type confusion with __proto__ mutations

- Mozilla Firefox 60.6.0esr
MFSA 2019-08 (bsc#1129821)
* CVE-2019-9790 bmo#1525145
Use-after-free when removing in-use DOM elements
* CVE-2019-9791 bmo#1530958
Type inference is incorrect for constructors entered through on-stack replacement with IonMonkey
* CVE-2019-9792 bmo#1532599
IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
* CVE-2019-9793 bmo#1528829
Improper bounds checks when Spectre mitigations are disabled
* CVE-2019-9794 bmo#1530103
Command line arguments not discarded during execution
* CVE-2019-9795 bmo#1514682
Type-confusion in IonMonkey JIT compiler
* CVE-2019-9796 bmo#1531277
Use-after-free with SMIL animation controller
* CVE-2018-18506 bmo#1503393
Proxy Auto-Configuration file can define localhost access to be proxied
* CVE-2019-9788 bmo#1518001 bmo#1521304 bmo#1521214 bmo#1506665 bmo#1516834
bmo#1518774 bmo#1524755 bmo#1523362 bmo#1524214 bmo#1529203
Memory safety bugs fixed in Firefox 66 and Firefox ESR 60.6

- Mozilla Firefox 60.5.2esr:

Created by wrosenauer about 5 years ago
In state accepted

Incident MozillaFirefox

Comments for request 687818 1

Leap Reviewbot (leaper) - about 5 years ago

home:wrosenauer:devel/MozillaFirefox@e4338251a83692b7e0cea093cf424791 -> openSUSE:Leap:15.0:Update/MozillaFirefox

expected origin is 'FORK' (unchanged)

Login required, please login in order to comment

Request History

wrosenauer created request about 5 years ago

- Mozilla Firefox 60.6.1esr
MFSA 2019-10 (bsc#1130262)
* CVE-2019-9810 (bmo#1537924)
IonMonkey MArraySlice has incorrect alias information
* CVE-2019-9813 (bmo#1538006)
Ionmonkey type confusion with __proto__ mutations

- Mozilla Firefox 60.6.0esr
MFSA 2019-08 (bsc#1129821)
* CVE-2019-9790 bmo#1525145
Use-after-free when removing in-use DOM elements
* CVE-2019-9791 bmo#1530958
Type inference is incorrect for constructors entered through on-stack replacement with IonMonkey
* CVE-2019-9792 bmo#1532599
IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
* CVE-2019-9793 bmo#1528829
Improper bounds checks when Spectre mitigations are disabled
* CVE-2019-9794 bmo#1530103
Command line arguments not discarded during execution
* CVE-2019-9795 bmo#1514682
Type-confusion in IonMonkey JIT compiler
* CVE-2019-9796 bmo#1531277
Use-after-free with SMIL animation controller
* CVE-2018-18506 bmo#1503393
Proxy Auto-Configuration file can define localhost access to be proxied
* CVE-2019-9788 bmo#1518001 bmo#1521304 bmo#1521214 bmo#1506665 bmo#1516834
bmo#1518774 bmo#1524755 bmo#1523362 bmo#1524214 bmo#1529203
Memory safety bugs fixed in Firefox 66 and Firefox ESR 60.6

- Mozilla Firefox 60.5.2esr:

factory-auto accepted review about 5 years ago

Check script succeeded

maintbot accepted review about 5 years ago

ok

licensedigger accepted review about 5 years ago

ok

licensedigger approved review about 5 years ago

ok

msmeissn moved maintenance target to openSUSE:Maintenance:9849 about 5 years ago

msmeissn accepted request about 5 years ago

ok

openSUSE Build Service is sponsored by