Univention Bugzilla – Bug 37141
Firefox: Security issues from 31.3 (4.0)
Last modified: 2017-10-26 13:54:44 CEST
+++ This bug was initially created as a clone of Bug #37140 +++ Multiple exploitable memory safety errors (CVE-2014-1587) Bypass of security restrictions (CVE-2014-1589) Denial of service in XMLHTTPRequest parsing (CVE-2014-1590) Use-after-free in HTML5 parsing (CVE-2014-1592) Buffer overflow in parsing media content (CVE-2014-1593) Incorrect casting might potentially result in the execution of arbitrary code (CVE-2014-1594)
Updated to ESR 31.3 Advisory: 2015-01-09-firefox-{de,en}.yaml
Tests were successful for both versions, switching between German and English worked fine. YAML files are ok. I've also tested the appliance mode with the new firefox-en package.
http://errata.univention.de/ucs/4.0/29.html http://errata.univention.de/ucs/4.0/30.html