RHEL 8 : firefox (RHSA-2020:3555)
high Nessus Plugin ID 139811
Language:
New! Plugin Severity Now Using CVSS v3
The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Synopsis
The remote Red Hat host is missing one or more security updates.Description
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3555 advisory.- Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)
- Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process (CVE-2020-12424)
- Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)
- Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)
- Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)
- Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)
- Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)
- Mozilla: Overriding file type when saving to disk (CVE-2020-15658)
- Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)
- Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected firefox package.See Also
https://cwe.mitre.org/data/definitions/125.html
https://cwe.mitre.org/data/definitions/138.html
https://cwe.mitre.org/data/definitions/190.html
https://cwe.mitre.org/data/definitions/276.html
https://cwe.mitre.org/data/definitions/416.html
https://cwe.mitre.org/data/definitions/451.html
https://cwe.mitre.org/data/definitions/648.html
https://cwe.mitre.org/data/definitions/843.html
https://access.redhat.com/security/cve/CVE-2020-12422
https://access.redhat.com/security/cve/CVE-2020-12424
https://access.redhat.com/security/cve/CVE-2020-12425
https://access.redhat.com/security/cve/CVE-2020-15648
https://access.redhat.com/security/cve/CVE-2020-15653
https://access.redhat.com/security/cve/CVE-2020-15654
https://access.redhat.com/security/cve/CVE-2020-15656
https://access.redhat.com/security/cve/CVE-2020-15658
https://access.redhat.com/security/cve/CVE-2020-15664
https://access.redhat.com/security/cve/CVE-2020-15669
https://access.redhat.com/errata/RHSA-2020:3555
https://bugzilla.redhat.com/1861645
https://bugzilla.redhat.com/1861646
https://bugzilla.redhat.com/1861647
https://bugzilla.redhat.com/1861649
https://bugzilla.redhat.com/1872531
https://bugzilla.redhat.com/1872532
https://bugzilla.redhat.com/1872537
https://bugzilla.redhat.com/1872538
Plugin Details
Severity: High
ID: 139811
File Name: redhat-RHSA-2020-3555.nasl
Version: 1.8
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 8/26/2020
Updated: 10/12/2021
Dependencies: ssh_get_info.nasl, redhat_repos.nasl
Risk Information
CVSS Score Source: CVE-2020-15656
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 6.9
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Temporal Vector: E:U/RL:OF/RC:C
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:redhat:rhel_e4s:8.0, p-cpe:/a:redhat:enterprise_linux:firefox
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Ease: No known exploits are available
Patch Publication Date: 8/26/2020
Vulnerability Publication Date: 6/30/2020
Reference Information
CVE: CVE-2020-12422, CVE-2020-12424, CVE-2020-12425, CVE-2020-15648, CVE-2020-15653, CVE-2020-15654, CVE-2020-15656, CVE-2020-15658, CVE-2020-15664, CVE-2020-15669