update to Firefox 31.5.3 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:0567-1 Final 1 1 2015-03-22T16:26:00Z current 2015-03-22T16:26:00Z 2015-03-22T16:26:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z update to Firefox 31.5.3 Update to Firefox 31.5.3 (bnc#923534) * MFSA 2015-28/CVE-2015-0818 (bmo#1144988) Privilege escalation through SVG navigation * MFSA 2015-29/CVE-2015-0817 (bmo#1145255) Code execution through incorrect JavaScript bounds checking elimination - update to Firefox 31.5.0esr (bnc#917597) * MFSA 2015-11/CVE-2015-0836 Miscellaneous memory safety hazards * MFSA 2015-12/CVE-2015-0833 (bmo#945192) Invoking Mozilla updater will load locally stored DLL files (Windows only) * MFSA 2015-16/CVE-2015-0831 (bmo#1130514) Use-after-free in IndexedDB * MFSA 2015-19/CVE-2015-0827 (bmo#1117304) Out-of-bounds read and write while rendering SVG content * MFSA 2015-24/CVE-2015-0822 (bmo#1110557) Reading of local files through manipulation of form autocomplete The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html E-Mail link for openSUSE-SU-2015:0567-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Evergreen 11.4 MozillaFirefox-31.5.3-137.1 MozillaFirefox-branding-upstream-31.5.3-137.1 MozillaFirefox-buildsymbols-31.5.3-137.1 MozillaFirefox-debuginfo-31.5.3-137.1 MozillaFirefox-debugsource-31.5.3-137.1 MozillaFirefox-devel-31.5.3-137.1 MozillaFirefox-translations-common-31.5.3-137.1 MozillaFirefox-translations-other-31.5.3-137.1 MozillaFirefox-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-branding-upstream-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-buildsymbols-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-debuginfo-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-debugsource-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-devel-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-translations-common-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 MozillaFirefox-translations-other-31.5.3-137.1 as a component of openSUSE Evergreen 11.4 The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely skipped during JIT compilation and heap access, which allows remote attackers to read or write to unintended memory locations, and consequently execute arbitrary code, via crafted JavaScript. CVE-2015-0817 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0817.html CVE-2015-0817 https://bugzilla.suse.com/923495 SUSE Bug 923495 https://bugzilla.suse.com/923534 SUSE Bug 923534 Mozilla Firefox before 36.0.4, Firefox ESR 31.x before 31.5.3, and SeaMonkey before 2.33.1 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation. CVE-2015-0818 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0818.html CVE-2015-0818 https://bugzilla.suse.com/923495 SUSE Bug 923495 https://bugzilla.suse.com/923534 SUSE Bug 923534 The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code. CVE-2015-0822 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0822.html CVE-2015-0822 https://bugzilla.suse.com/910669 SUSE Bug 910669 https://bugzilla.suse.com/917597 SUSE Bug 917597 https://bugzilla.suse.com/924515 SUSE Bug 924515 Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic. CVE-2015-0827 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0827.html CVE-2015-0827 https://bugzilla.suse.com/910669 SUSE Bug 910669 https://bugzilla.suse.com/917597 SUSE Bug 917597 https://bugzilla.suse.com/924515 SUSE Bug 924515 Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation. CVE-2015-0831 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0831.html CVE-2015-0831 https://bugzilla.suse.com/910669 SUSE Bug 910669 https://bugzilla.suse.com/917597 SUSE Bug 917597 https://bugzilla.suse.com/924515 SUSE Bug 924515 Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 on Windows, when the Maintenance Service is not used, allow local users to gain privileges via a Trojan horse DLL in (1) the current working directory or (2) a temporary directory, as demonstrated by bcrypt.dll. CVE-2015-0833 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0833.html CVE-2015-0833 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. CVE-2015-0836 openSUSE Evergreen 11.4:MozillaFirefox-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-branding-upstream-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-buildsymbols-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debuginfo-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-debugsource-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-devel-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-common-31.5.3-137.1 openSUSE Evergreen 11.4:MozillaFirefox-translations-other-31.5.3-137.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html https://www.suse.com/security/cve/CVE-2015-0836.html CVE-2015-0836 https://bugzilla.suse.com/910669 SUSE Bug 910669 https://bugzilla.suse.com/917597 SUSE Bug 917597 https://bugzilla.suse.com/924515 SUSE Bug 924515