Scientific Linux Security Update : firefox on SL6.x, SL7.x i386/x86_64
Medium Nessus Plugin ID 105030
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionThis update upgrades Firefox to version 52.5.1 ESR.
Security Fix(es) :
- A privacy flaw was discovered in Firefox. In Private Browsing mode, a web worker could write persistent data to IndexedDB, which was not cleared when exiting and would persist across multiple sessions. A malicious website could exploit the flaw to bypass private-browsing protections and uniquely fingerprint visitors. (CVE-2017-7843)
SolutionUpdate the affected firefox and / or firefox-debuginfo packages.