Branch sisyphus update bulletin.

Package firefox-esr updated to version 38.5.2-alt1 for branch sisyphus in task 155331.

Published: 2016-04-30

BDU:2016-01159

Уязвимости браузеров Firefox и Firefox ESR, позволяющие нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

References:

CVE-2016-2805

Published: 2016-04-30
Modified: 2025-04-12

CVE-2016-2805

Unspecified vulnerability in the browser engine in Mozilla Firefox ESR 38.x before 38.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

No data currently available.

Package thunderbird-esr updated to version 38.5.0-alt1 for branch sisyphus in task 155332.

No data currently available.

Version: 2.1.2

Branch sisyphus update on 2015-12-27

ALT-BU-2015-2831-1

ALT-PU-2015-2189-1

Closed vulnerabilities

BDU:2016-01159

CVE-2016-2805

MFSA 2015-15

ALT-PU-2015-2190-1

Closed vulnerabilities

MFSA 2015-13

MFSA 2015-14