Test ID:	1.3.6.1.4.1.25623.1.1.10.2018.0305
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2018-0305)
Summary:	The remote host is missing an update for the 'firefox, firefox-l10n' package(s) announced via the MGASA-2018-0305 advisory.
Description:	Summary: The remote host is missing an update for the 'firefox, firefox-l10n' package(s) announced via the MGASA-2018-0305 advisory. Vulnerability Insight: Mozilla: Memory safety bugs fixed in Firefox ESR 52.9 (CVE-2018-5188). Mozilla: Buffer overflow using computed size of canvas element (CVE-2018-12359). Mozilla: Use-after-free using focus() (CVE-2018-12360). Mozilla: Media recorder segmentation fault when track type is changed during capture (CVE-2018-5156). Mozilla: Integer overflow in SSSE3 scaler (CVE-2018-12362). Mozilla: Use-after-free when appending DOM nodes (CVE-2018-12363). Mozilla: CSRF attacks through 307 redirects and NPAPI plugins (CVE-2018-12364). Mozilla: Compromised IPC child process can list local filenames (CVE-2018-12365). Mozilla: Invalid data handling during QCMS transformations (CVE-2018-12366). Affected Software/OS: 'firefox, firefox-l10n' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-12359 BugTraq ID: 104555 http://www.securityfocus.com/bid/104555 Debian Security Information: DSA-4235 (Google Search) https://www.debian.org/security/2018/dsa-4235 Debian Security Information: DSA-4244 (Google Search) https://www.debian.org/security/2018/dsa-4244 https://security.gentoo.org/glsa/201810-01 https://security.gentoo.org/glsa/201811-13 https://lists.debian.org/debian-lts-announce/2018/06/msg00014.html https://lists.debian.org/debian-lts-announce/2018/07/msg00013.html RedHat Security Advisories: RHSA-2018:2112 https://access.redhat.com/errata/RHSA-2018:2112 RedHat Security Advisories: RHSA-2018:2113 https://access.redhat.com/errata/RHSA-2018:2113 RedHat Security Advisories: RHSA-2018:2251 https://access.redhat.com/errata/RHSA-2018:2251 RedHat Security Advisories: RHSA-2018:2252 https://access.redhat.com/errata/RHSA-2018:2252 http://www.securitytracker.com/id/1041193 https://usn.ubuntu.com/3705-1/ https://usn.ubuntu.com/3714-1/ Common Vulnerability Exposure (CVE) ID: CVE-2018-12360 Common Vulnerability Exposure (CVE) ID: CVE-2018-12362 BugTraq ID: 104560 http://www.securityfocus.com/bid/104560 Common Vulnerability Exposure (CVE) ID: CVE-2018-12363 Common Vulnerability Exposure (CVE) ID: CVE-2018-12364 Common Vulnerability Exposure (CVE) ID: CVE-2018-12365 Common Vulnerability Exposure (CVE) ID: CVE-2018-12366 Common Vulnerability Exposure (CVE) ID: CVE-2018-5156 Debian Security Information: DSA-4295 (Google Search) https://www.debian.org/security/2018/dsa-4295 https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html Common Vulnerability Exposure (CVE) ID: CVE-2018-5188 https://usn.ubuntu.com/3749-1/
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.