Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Update to 45.4.0
Changelog:
Security vulnerabilities fixed in Firefox ESR 45.4
Announced
September 13, 2016
Impact
Critical
Products
Firefox ESR
Fixed in
Firefox ESR 45.4
Description
CVE-2016-5270 - Heap-buffer-overflow in \
nsCaseTransformTextRunFactory::TransformString [high]
Reporter: Atte Kettunen
Description: An out-of-bounds write of a boolean value during text conversion \
with some unicode characters. [1291016]
CVE-2016-5272 - Bad cast in nsImageGeometryMixin [high]
Reporter: Abhishek Arya
Description: A bad cast when processing layout with input elements can result in \
a potentially exploitable crash. [1297934]
CVE-2016-5276 - Heap-use-after-free in \
mozilla::a11y::DocAccessible::ProcessInvalidationList [high]
Reporter: Nils
Description: A use-after-free vulnerability triggered by setting a aria-owns \
attribute [1287721]
CVE-2016-5274 - use-after-free in nsFrameManager::CaptureFrameState [high]
Reporter: Nils
Description: A use-after-free issue in web animations during restyling. [1282076]
CVE-2016-5277 - Heap-use-after-free in nsRefreshDriver::Tick [high]
Reporter: Nils
Description: A user-after-free vulnerability with web animations when destroying \
a timeline [1291665]
CVE-2016-5278 - Heap-buffer-overflow in nsBMPEncoder::AddImageFrame [critical]
Reporter: Nils
Description: A potentially exploitable crash caused by a buffer overflow while \
encoding image frames to images [1294677]
CVE-2016-5280 - Use-after-free in \
mozilla::nsTextNodeDirectionalityMap::RemoveElementFromMap [high]
Reporter: Mei Wang
Description: Use-after-free vulnerability when changing text direction [1289970]
CVE-2016-5281 - use-after-free in DOMSVGLength [high]
Reporter: Brian Carpenter
Description: Use-after-free vulnerability when manipulating SVG format content \
through script [1284690]
CVE-2016-5284 - Add-on update site certificate pin expiration [high]
Reporter: Multiple people
Description: Due to flaws in the process we used to update "Preloaded \
Public Key Pinning" in our releases, the pinning for add-on updates became \
ineffective in early September. An attacker who was able to get a mis-issued \
certificate for a Mozilla web site could send malicious add-on updates to users \
on networks controlled by the attacker. Users who have not installed any add-ons \
are not affected. [1303127]
CVE-2016-5250 - Resource Timing API is storing resources sent by the previous \
page [moderate]
Reporter: Catalin Dumitru
Description: URLs of resources loaded after a navigation started can leak to the \
following page through the Resource Timing API, leading to potential information \
disclosure. [1254688]
CVE-2016-5261 - Integer overflow and memory corruption in WebSocketChannel [high]
Reporter: Samuel GroÃ
Description: An integer overflow error in WebSockets during data buffering on \
incoming packets resulting in attacker controlled data being written at a known \
offset in the allocated buffer. [1287266]
CVE-2016-5257 - Memory safety bugs fixed in Firefox 49 and Firefox ESR 45.4 \
[critical]
Reporter: Mozilla developers
Description: Mozilla developers and community members Christoph Diehl, Andrew \
McCreight, Dan Minor, Byron Campen, Jon Coppeard, Steve Fink, Tyson Smith, \
Philipp, and Carsten Book reported memory safety bugs present in Firefox 48 and \
Firefox ESR 45.3. Some of these bugs showed evidence of memory corruption and we \
presume that with enough effort at least some of these could be exploited to run \
arbitrary code. [Memory safety bugs fixed in Firefox 49 and Firefox ESR 45.4]
| Revision | Action | file |
| 1.11 | modify | pkgsrc/www/firefox45/Makefile |
| 1.7 | modify | pkgsrc/www/firefox45/distinfo |