New Search

SUSE-SU-2014:1458-3 -- Security update for MozillaFirefox (important)

oval:org.mitre.oval:def:27600

This version update of Mozilla Firefox to 31.2.0ESR brings improvements stability fixes and also security fixes for the following CVEs: CVE-2014-1574 CVE-2014-1575 CVE-2014-1576 CVE-2014-1577 CVE-2014-1578 CVE-2014-1581 CVE-2014-1583 CVE-2014-1585 CVE-2014-1586 It also disables SSLv3 by default to mitigate the protocol downgrade attack known as POODLE. Security Issues: * CVE-2014-1574 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1574> * CVE-2014-1575 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1575> * CVE-2014-1576 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1576> * CVE-2014-1577 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1577> * CVE-2014-1578 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1578> * CVE-2014-1581 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1581> * CVE-2014-1583 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1583> * CVE-2014-1585 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1585> * CVE-2014-1586 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1586>

Family:
unix
Status:
ACCEPTED
Platform(s):
  • SUSE Linux Enterprise Server 10
Class:
patch
Reference(s):
  • SUSE-SU-2014:1458-3
  • CVE-2014-1574
  • CVE-2014-1575
  • CVE-2014-1576
  • CVE-2014-1577
  • CVE-2014-1578
  • CVE-2014-1581
  • CVE-2014-1583
  • CVE-2014-1585
  • CVE-2014-1586
Product(s):
  • MozillaFirefox