CVE-2016-9079 firefox use after free in SVG
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Linux Mint |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Firefox less than 50.0.2 is vulnerable to a remote-
http://
This is a '0-day' publicly disclosed vulnerability with extremely high risk due to the ease of getting malicious images onto websites. (Ad networks, user uploads etc)
Firefox and ubuntu have released 50.0.2 (50.0.2+
apt-cache policy firefox
firefox:
Installed: 50.0+linuxmint1
Candidate: 50.0+linuxmint1
Version table:
50.
500 http://
500 http://
*** 50.0+linuxmint1
700 http://
100 /var/lib/
45.
500 http://
This is a very critical update that needs #1 priority. This patch needs deployed yesterday, where is it?
Sorry if this is being tracked somewhere else, I couldn't find any hint of it being addressed anywhere.
information type: | Private Security → Public Security |
50.0.2+ linuxmint1+ serena dropped this morning. thanks.