firefox-38.4.0-1.0.1.el7.AXS7

エラータID: AXSA:2015-537:03

Release date: 
Monday, November 9, 2015 - 13:08
Subject: 
firefox-38.4.0-1.0.1.el7.AXS7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.

Security issues fixed with this release:

CVE-2015-4513
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7188
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7189
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7193
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7194
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7196
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7197
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2015-7198
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.

Solution: 

Update packages.

CVEs: 
CVE-2015-4513
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Additional Info: 

N/A

Download: 

SRPMS
  1. firefox-38.4.0-1.0.1.el7.AXS7.src.rpm
    MD5: 6a1d730d443356a85a1a9a8f11745e18
    SHA-256: 057a5e51296c974fe358e180920b7a5358155a28a87f9ccbdc0ec8dc315e350c
    Size: 206.30 MB

Asianux Server 7 for x86_64
  1. firefox-38.4.0-1.0.1.el7.AXS7.x86_64.rpm
    MD5: 1e140943f604dae7a5aa5d2f2d807c9c
    SHA-256: 0bf85bdb2764da87c1e61ef94065b4e88f2581eed2ce5aca137179ff965a2ca2
    Size: 71.55 MB
  2. firefox-38.4.0-1.0.1.el7.AXS7.i686.rpm
    MD5: bdae7823eca3de8c8c1c1dd6cf0a9db5
    SHA-256: a2c74c3f3c12b7d61127b07790b072eda54a2d777c11a6cfb61f7595fb1c6564
    Size: 71.76 MB