Package firefox updated to version 78.0.2-alt1 for branch sisyphus in task 254883.

Published: 2020-08-10
Modified: 2024-11-21

CVE-2020-15648

Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

References:

https://bugzilla.mozilla.org/show_bug.cgi?id=1644076
https://bugzilla.mozilla.org/show_bug.cgi?id=1644076
https://www.mozilla.org/security/advisories/mfsa2020-28/
https://www.mozilla.org/security/advisories/mfsa2020-28/
https://www.mozilla.org/security/advisories/mfsa2020-29/
https://www.mozilla.org/security/advisories/mfsa2020-29/

No data currently available.

Version: 2.1.0

Package firefox update in sisyphus on 2020-07-13

ALT-PU-2020-2354-1

Closed vulnerabilities

CVE-2020-15648

MFSA-2020-00