Univention Bugzilla – Bug 36374
Firefox: Security issues from 31.2 (4.0)
Last modified: 2014-11-26 06:54:32 CET
Needs to be merged to UCS 4.0.
+++ This bug was initially created as a clone of Bug #36175 +++
We need to migrate to the new ESR31 series, ESR24 is no longer supported.
Memory corruption in the browser engine (CVE-2014-1574)
Buffer overflow in CSS parsing (CVE-2014-1576)
Memory corruption in Web Audio (CVE-2014-1577)
Out-of-bounds write in WebM playback (CVE-2014-1578)
Use-after-free in text rendering (CVE-2014-1581)
Information leak in WebRTC (CVE-2014-1585, CVE-2014-1586)
Bypass of the same-origin policy (CVE-2014-1583)
*** Bug 36375 has been marked as a duplicate of this bug. ***
Firefox has been updated: r55226 + r55228
Firefox ESR31 is installed on a new i386 or amd64 system
UCS 4.0-0 has been released:
If this error occurs again, please use "Clone This Bug".