Lucene search
RedHatRHSA-2020:5561HistoryDec 16, 2020 - 7:29 a.m.
(RHSA-2020:5561) Important: firefox security update
2020-12-1607:29:44
access.redhat.com
44
0.004 Low
EPSS
Percentile
72.9%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 78.6.0 ESR.
Security Fix(es):
-
chromium-browser: Uninitialized Use in V8 (CVE-2020-16042)
-
Mozilla: Heap buffer overflow in WebGL (CVE-2020-26971)
-
Mozilla: CSS Sanitizer performed incorrect sanitization (CVE-2020-26973)
-
Mozilla: Incorrect cast of StyleGenericFlexBasis resulted in a heap use-after-free (CVE-2020-26974)
-
Mozilla: Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6 (CVE-2020-35113)
-
Mozilla: Internal network hosts could have been probed by a malicious webpage (CVE-2020-26978)
-
Mozilla: The proxy.onRequest API did not catch view-source URLs (CVE-2020-35111)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | x86_64 | firefox | < 78.6.0-1.el7_9 | firefox-78.6.0-1.el7_9.x86_64.rpm |
| RedHat | 7 | x86_64 | firefox-debuginfo | < 78.6.0-1.el7_9 | firefox-debuginfo-78.6.0-1.el7_9.x86_64.rpm |
| RedHat | 7 | ppc64 | firefox | < 78.6.0-1.el7_9 | firefox-78.6.0-1.el7_9.ppc64.rpm |
| RedHat | 7 | ppc64 | firefox-debuginfo | < 78.6.0-1.el7_9 | firefox-debuginfo-78.6.0-1.el7_9.ppc64.rpm |
| RedHat | 7 | ppc64le | firefox-debuginfo | < 78.6.0-1.el7_9 | firefox-debuginfo-78.6.0-1.el7_9.ppc64le.rpm |
| RedHat | 7 | s390x | firefox | < 78.6.0-1.el7_9 | firefox-78.6.0-1.el7_9.s390x.rpm |
| RedHat | 7 | s390x | firefox-debuginfo | < 78.6.0-1.el7_9 | firefox-debuginfo-78.6.0-1.el7_9.s390x.rpm |
| RedHat | 7 | ppc64le | firefox | < 78.6.0-1.el7_9 | firefox-78.6.0-1.el7_9.ppc64le.rpm |
| RedHat | 7 | i686 | firefox | < 78.6.0-1.el7_9 | firefox-78.6.0-1.el7_9.i686.rpm |
Related
nessus
nessus
Scientific Linux Security Update : firefox on SL7.x i686/x86_64 (2020:5561)
2020-12-17 00:00:00
RHEL 8 : firefox (RHSA-2020:5562)
2020-12-18 00:00:00
Debian DLA-2496-1 : firefox-esr security update
2020-12-17 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerabilities
2020-12-17 16:10:41
Updated thunderbird packages fix security vulnerabilities
2020-12-17 16:10:41
oraclelinux
oraclelinux
thunderbird security update
2020-12-18 00:00:00
thunderbird security update
2020-12-18 00:00:00
firefox security update
2020-12-17 00:00:00
osv
osv
firefox-esr - security update
2020-12-16 00:00:00
thunderbird - security update
2020-12-17 00:00:00
thunderbird - security update
2020-12-17 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2496-1)
2020-12-17 00:00:00
Debian: Security Advisory (DLA-2497-1)
2020-12-18 00:00:00
Mageia: Security Advisory (MGASA-2020-0462)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DSA 4813-1] firefox-esr security update
2020-12-16 12:46:35
[SECURITY] [DLA 2497-1] thunderbird security update
2020-12-17 11:38:46
[SECURITY] [DSA 4815-1] thunderbird security update
2020-12-17 09:30:44
redhat
redhat
(RHSA-2020:5565) Important: firefox security update
2020-12-16 08:01:21
(RHSA-2020:5624) Important: thunderbird security update
2020-12-17 16:03:29
(RHSA-2020:5563) Important: firefox security update
2020-12-16 07:29:58
centos
centos
thunderbird security update
2020-12-21 20:46:06
gentoo
gentoo
Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities
2020-12-23 00:00:00
suse
suse
Security update for MozillaFirefox (critical)
2020-12-25 00:00:00
Security update for MozillaThunderbird (critical)
2020-12-22 00:00:00
Security update for MozillaThunderbird (critical)
2020-12-25 00:00:00
kaspersky
kaspersky
KLA12031 Multiple vulnerabilities in Mozilla Thunderbird
2020-12-15 00:00:00
KLA12030 Multiple vulnerabilities in Mozilla Firefox ESR
2020-12-15 00:00:00
KLA12029 Multiple vulnerabilities in Mozilla Firefox
2020-12-15 00:00:00
archlinux
archlinux
[ASA-202012-23] thunderbird: multiple issues
2020-12-16 00:00:00
[ASA-202012-25] firefox: multiple issues
2020-12-16 00:00:00
[ASA-202012-14] chromium: multiple issues
2020-12-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 78.6.0-alt1
2020-12-15 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 78.6.0-alt1
2020-12-14 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 78.6 — Mozilla
2020-12-15 00:00:00
Security Vulnerabilities fixed in Thunderbird 78.6 — Mozilla
2020-12-15 00:00:00
Security Vulnerabilities fixed in Firefox 84 — Mozilla
2020-12-15 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2021-01-20 00:00:00
Firefox vulnerabilities
2020-12-15 00:00:00
threatpost
threatpost
Firefox Patches Critical Mystery Bug, Also Impacting Google Chrome
2020-12-15 21:04:30
High-Severity Chrome Bugs Allow Browser Hacks
2020-12-04 20:40:45
amazon
amazon
Important: thunderbird
2021-01-05 23:35:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1986
2021-07-02 18:16:55
cvelist
cvelist
cve
cve
alpinelinux
alpinelinux
redhatcve
redhatcve
veracode
veracode
Memory Leaks
2020-12-16 08:57:11
Information Disclosure
2020-12-16 08:54:27
Denial Of Service(DOS)
2020-12-16 08:52:51
ubuntucve
ubuntucve
debiancve
debiancve
prion
prion
Design/Logic Flaw
2021-01-07 14:15:00
Heap overflow
2021-01-07 14:15:00
Memory corruption
2021-01-07 14:15:00
nvd
nvd
thn
thn
New Attack Could Let Remote Hackers Target Devices On Internal Networks
2021-01-27 12:58:00
fedora
fedora
[SECURITY] Fedora 33 Update: chromium-87.0.4280.88-1.fc33
2020-12-10 01:16:46
[SECURITY] Fedora 32 Update: chromium-87.0.4280.88-1.fc32
2020-12-21 01:36:08
freebsd
freebsd
chromium -- multiple vulnerabilities
2020-12-02 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-12-02 00:00:00