Univention Bugzilla – Bug 38179
Firefox: Security issues from 31.6 (4.0)
Last modified: 2015-05-07 17:38:53 CEST
Same-origin bypass through anchor navigation (CVE-2015-0801) Potential XSRF affecting sendBeacon() requests (CORS requests should not follow 30x redirections after prefligh) (CVE-2015-0807) Use-after-free when using the Fluendo MP3 GStreamer plugin (CVE-2015-0813) Memory safety bugs (CVE-2015-0815) resource:// documents can load privileged pages (CVE-2015-0816)
Two more have been fixed in 31.5.2 and 31.5.3: * Reading and writing of memory allowing for arbitary code execution on the local system (Pwn2Own asm.js exploit) (CVE-2015-0817) * Run arbitrary scripts in a privileged context (Same-origin bypass via SVG hash navigation) (CVE-2015-0818)
Advisory: 2015-04-13-firefox-{de,en}.yaml Tests (i386): OK
Verified: * Upstream ESR version imported and built in errata4.0-1 * Package update works, german and english versions tested. * Advisories Ok.
<http://errata.univention.de/ucs/4.0/166.html> <http://errata.univention.de/ucs/4.0/167.html>