Author: ken
Date: Tue Mar 23 10:00:06 2021
New Revision: 1749
Log:
Security advisories for firefox-78.9.0 and JS-78.9.0.
Modified:
html/trunk/blfs/advisories/10.1.html
html/trunk/blfs/advisories/consolidated.html
Modified: html/trunk/blfs/advisories/10.1.html
==============================================================================
--- html/trunk/blfs/advisories/10.1.html Mon Mar 22 09:57:47 2021
(r1748)
+++ html/trunk/blfs/advisories/10.1.html Tue Mar 23 10:00:06 2021
(r1749)
@@ -49,6 +49,15 @@
-->
<!-- end of PackageName -->
+ <h3>Firefox</h3>
+
+ <a id="10.1-008">
+ <h4>10.1 008 Firefox Date: 2021-03-23 Severity: High</h4>
+ <p>In firefox 78.9.0 several vulnerabilities were fixed, two
+ are rated as High. To fix these, update to firefox-78.9.0 or later.
+ <a href="consolidated.html#10.1-008">10.1-008</a></p>
+<!-- end of Firefox -->
+
<h3>GnuTLS</h3>
<h4>10.1 004 GnuTLS Date: 2021-03-12 Severity: Low</h4>
@@ -56,6 +65,7 @@
result in dereferencing a pointer no longer valid after realloc().
To fix this, upgrade to GnuTLS 3.7.1 or later versions.
<a href="consolidated.html#10.1-004">10.1-004</a></p>
+<!-- end of GnuTLS -->
<h3>Gstreamer</h3>
<h4>10.1 007 Gstreamer Date: 2021-03-16 Severity: High</h4>
@@ -67,6 +77,14 @@
<!-- end of gstreamer -->
+ <h3>JS78</h3>
+ <a id="10.1-009">
+ <h4>10.1 009 JS78 Date: 2021-03-23 Severity: Medium</h4>
+ <p>In the javascript code of firefox-78.9.0 there are hardening fixes
+ against Spectre attacks. To apply these, upgrade to JS-78.9.0 or later.
+ <a href="consolidated.html#10.1-009">10.1-009</a></p>
+ <!-- end of JS78 -->
+
<h3>MuPDF</h3>
<h4>10.1 003 MuPDF Date: 2021-03-10 Severity: Medium</h4>
Modified: html/trunk/blfs/advisories/consolidated.html
==============================================================================
--- html/trunk/blfs/advisories/consolidated.html Mon Mar 22 09:57:47
2021 (r1748)
+++ html/trunk/blfs/advisories/consolidated.html Tue Mar 23 10:00:06
2021 (r1749)
@@ -80,6 +80,28 @@
<p>There are currently no known security vulnerabilities for the latest
releases of the books.</p>
-->
+ <a id="10.1-009">
+ <h4>10.1 009 JS78 Date: 2021-03-23 Severity: Medium</h4>
+ <p>In the javascript code of firefox-78.9.0 there are hardening fixes
+ against Spectre attacks, see
+ <a href="http://wiki.linuxfromscratch.org/blfs/ticket/14804"/>BLFS
#14804</a>.
+ <p>To fix this, update to JS-78.9.0 or later using the instructions
+ for
+ <a href="../view/svn/general/js78.html">JS78 (sysv)</a> or
+ <a href="../view/svn-systemd/general/js78.html">JS78 (systemd)</a>.</p>
+
+ <a id="10.1-008">
+ <h4>10.1 008 Firefox Date: 2021-03-23 Severity: High</h4>
+ <p>In firefox 78.9.0 several vulnerabilities were fixed, two
+ are rated as High. See
+ <a
href="https://www.mozilla.org/en-US/security/advisories/mfsa2021-11/";>mfsa2021-11</a>.
+ CVEs have been assigned (CVE-2021-23981, CVE-2021-23982, CVE-20201-23984,
+ CVE-2021-23987) but details are not yet public.</p>
+ <p>To fix these, update to firefox-78.9.0 or later using the instructions
+ for
+ <a href="../view/svn/xsoft/firefox.html">Firefox (sysv)</a> or
+ <a href="../view/svn-systemd/xsoft/firefox.html">Firefox (systemd)</a>.</p>
+
<a id="10.1-007">
<h4>10.1 007 Gstreamer Updated: 2021-03-21 Severity: High</h4>
<p>In gstreamer-1.18.4 (including plugins), five high severity security
--
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
