commit patchinfo.11974 for openSUSE:Leap:15.1:Update

Mon, 17 Feb 2020 21:12:13 -0800 

Hello community,

here is the log from the commit of package patchinfo.11974 for 
openSUSE:Leap:15.1:Update checked in at 2020-02-18 06:11:44
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Leap:15.1:Update/patchinfo.11974 (Old)
 and      /work/SRC/openSUSE:Leap:15.1:Update/.patchinfo.11974.new.26092 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "patchinfo.11974"

Tue Feb 18 06:11:44 2020 rev:1 rq:774893 version:unknown

Changes:
--------
New Changes file:

NO CHANGES FILE!!!

New:
----
  _patchinfo

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo incident="11974">
  <issue tracker="bnc" id="1163368">VUL-0: MozillaFirefox,MozillaThunderbird: 
68.5ESR / 73 release</issue>
  <issue tracker="cve" id="2020-6798"/>
  <issue tracker="cve" id="2020-6797"/>
  <issue tracker="cve" id="2020-6796"/>
  <issue tracker="cve" id="2020-6799"/>
  <issue tracker="cve" id="2020-6800"/>
  <packager>cgrobertson</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaFirefox</summary>
  <description>This update for MozillaFirefox fixes the following issues:

- Firefox Extended Support Release 68.5.0 ESR
  * Fixed: Various stability and security fixes
- Mozilla Firefox ESR68.5
  MFSA 2020-06 (bsc#1163368)
  * CVE-2020-6796 (bmo#1610426)
    Missing bounds check on shared memory read in the parent
    process
  * CVE-2020-6797 (bmo#1596668)
    Extensions granted downloads.open permission could open
    arbitrary applications on Mac OSX
  * CVE-2020-6798 (bmo#1602944)
    Incorrect parsing of template tag could result in JavaScript
    injection
  * CVE-2020-6799 (bmo#1606596)
    Arbitrary code execution when opening pdf links from other
    applications, when Firefox is configured as default pdf
    reader
  * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
    bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785)
    Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5

This update was imported from the SUSE:SLE-15:Update update 
project.</description>
</patchinfo>

Reply via email to