Scientific Linux Security Update : firefox on SL6.x i386/x86_64
High Nessus Plugin ID 117850
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionThis update upgrades Firefox to version 60.2.1 ESR.
Security Fix(es) :
- Mozilla: Crash in TransportSecurityInfo due to cached data (CVE-2018-12385)
- Mozilla: Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords (CVE-2018-12383)
SolutionUpdate the affected firefox and / or firefox-debuginfo packages.