Test ID:	1.3.6.1.4.1.25623.1.2.1.2014.68
Category:	General
Title:	Mozilla Firefox Security Advisory (MFSA2014-68) - Linux
Summary:	This host is missing a security update for Mozilla Firefox.
Description:	Summary: This host is missing a security update for Mozilla Firefox. Vulnerability Insight: Use-after-free during DOM interactions with SVG Security researcher Abhishek Arya (Inferno) of the Google Chrome Security Team used the Address Sanitizer tool to discover a use-after-free during cycle collection. This was found in interactions with the SVG content through the document object model (DOM) with animating SVG content. This leads to a potentially exploitable crash. Affected Software/OS: Firefox version(s) below 32. Solution: The vendor has released an update. Please see the reference(s) for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1563 BugTraq ID: 69523 http://www.securityfocus.com/bid/69523 https://security.gentoo.org/glsa/201504-01 http://www.securitytracker.com/id/1030793 http://www.securitytracker.com/id/1030794 http://secunia.com/advisories/60148 http://secunia.com/advisories/61114 SuSE Security Announcement: openSUSE-SU-2014:1098 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00003.html SuSE Security Announcement: openSUSE-SU-2014:1099 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00011.html SuSE Security Announcement: openSUSE-SU-2015:0138 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00024.html SuSE Security Announcement: openSUSE-SU-2015:1266 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.