Univention Bugzilla – Bug 36374
Firefox: Security issues from 31.2 (4.0)
Last modified: 2014-11-26 06:54:32 CET
Needs to be merged to UCS 4.0. +++ This bug was initially created as a clone of Bug #36175 +++ We need to migrate to the new ESR31 series, ESR24 is no longer supported. Memory corruption in the browser engine (CVE-2014-1574) Buffer overflow in CSS parsing (CVE-2014-1576) Memory corruption in Web Audio (CVE-2014-1577) Out-of-bounds write in WebM playback (CVE-2014-1578) Use-after-free in text rendering (CVE-2014-1581) Information leak in WebRTC (CVE-2014-1585, CVE-2014-1586) Bypass of the same-origin policy (CVE-2014-1583)
*** Bug 36375 has been marked as a duplicate of this bug. ***
Firefox has been updated: r55226 + r55228 Changelog: r55227
Firefox ESR31 is installed on a new i386 or amd64 system changelog ok
UCS 4.0-0 has been released: http://docs.univention.de/release-notes-4.0-0-en.html http://docs.univention.de/release-notes-4.0-0-de.html If this error occurs again, please use "Clone This Bug".