Test ID:	1.3.6.1.4.1.25623.1.1.4.2016.1352.1
Category:	SuSE Local Security Checks
Title:	SUSE: Security Advisory (SUSE-SU-2016:1352-1)
Summary:	The remote host is missing an update for the 'Mozilla Firefox' package(s) announced via the SUSE-SU-2016:1352-1 advisory.
Description:	Summary: The remote host is missing an update for the 'Mozilla Firefox' package(s) announced via the SUSE-SU-2016:1352-1 advisory. Vulnerability Insight: Mozilla Firefox was updated to fix the following vulnerabilities (bsc#977333): CVE-2016-2805: Memory safety bug fixed in Firefox ESR 38.8 (MFSA 2016-39, bsc#977374) CVE-2016-2807: Memory safety bugs fixed in Firefox ESR 45.1, Firefox ESR 38.8 and Firefox 46 (MFSA 2016-39, bsc#977376) CVE-2016-2808: Write to invalid HashMap entry through JavaScript.watch() (MFSA 2016-47, bsc#977386) CVE-2016-2814: Buffer overflow in libstagefright with CENC offsets (MFSA 2016-44, bsc#977381) Security Issues: CVE-2016-2805 CVE-2016-2807 CVE-2016-2808 CVE-2016-2814 Affected Software/OS: 'Mozilla Firefox' package(s) on SUSE Linux Enterprise Server 10-SP4. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2805 Debian Security Information: DSA-3559 (Google Search) http://www.debian.org/security/2016/dsa-3559 Debian Security Information: DSA-3576 (Google Search) http://www.debian.org/security/2016/dsa-3576 https://security.gentoo.org/glsa/201701-15 RedHat Security Advisories: RHSA-2016:0695 http://rhn.redhat.com/errata/RHSA-2016-0695.html RedHat Security Advisories: RHSA-2016:1041 http://rhn.redhat.com/errata/RHSA-2016-1041.html http://www.securitytracker.com/id/1035692 SuSE Security Announcement: SUSE-SU-2016:1258 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00023.html SuSE Security Announcement: SUSE-SU-2016:1352 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00054.html SuSE Security Announcement: SUSE-SU-2016:1374 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00057.html http://www.ubuntu.com/usn/USN-2973-1 Common Vulnerability Exposure (CVE) ID: CVE-2016-2807 SuSE Security Announcement: openSUSE-SU-2016:1211 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00005.html SuSE Security Announcement: openSUSE-SU-2016:1251 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-05/msg00038.html SuSE Security Announcement: openSUSE-SU-2016:1767 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00006.html SuSE Security Announcement: openSUSE-SU-2016:1769 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00007.html SuSE Security Announcement: openSUSE-SU-2016:1778 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00008.html http://www.ubuntu.com/usn/USN-2936-1 http://www.ubuntu.com/usn/USN-2936-2 http://www.ubuntu.com/usn/USN-2936-3 Common Vulnerability Exposure (CVE) ID: CVE-2016-2808 Common Vulnerability Exposure (CVE) ID: CVE-2016-2814
Copyright	Copyright (C) 2021 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.