openSUSE Security Update : MozillaFirefox / mozilla-nspr (openSUSE-SU-2014:0819-1)

This script is Copyright (C) 2014 Tenable Network Security, Inc.

Synopsis :

The remote openSUSE host is missing a security update.

Description :

mozilla-nspr was updated to version 4.10.6 to fix one security issue :

- OOB write with sprintf and console functions

MozillaFirefox was updated to version 30.0 to fix eight security
issues :

- Miscellaneous memory safety hazards

- Use-after-free and out of bounds issues found using
Address Sanitizer

- Use-after-free in Event Listener Manager (CVE-2014-1540)

- Use-after-free with SMIL Animation Controller

- Buffer overflow in Web Audio Speex resampler

Several non-security bugs were also fixed in this release.

See also :

Solution :

Update the affected MozillaFirefox / mozilla-nspr packages.

Risk factor :

Critical / CVSS Base Score : 10.0

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now