firefox-esr: Multiple vulnerabilities (CVE-2019-9812, CVE-2019-11735, CVE-2019-11738, CVE-2019-11740, CVE-2019-11742, CVE-2019-11743, CVE-2019-11744, CVE-2019-11746, CVE-2019-11747, CVE.., CVE-2019-11750, CVE-2019-11751, CVE-2019-11752, CVE-2019-11753)
CVE-2019-9812: Sandbox escape through Firefox Sync
CVE-2019-11740: Memory safety bugs
CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images
CVE-2019-11743: Cross-origin access to unload event attributes
CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML
CVE-2019-11746: Use-after-free while manipulating video
CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB
CVE-2019-11753: Privilege escalation with Mozilla Maintenance Service in custom Firefox installation location
Fixed In Version:
Firefox ESR 60.9, Firefox ESR 68.1
References:
- https://www.mozilla.org/en-US/security/advisories/mfsa2019-27/
- https://www.mozilla.org/en-US/security/advisories/mfsa2019-26/
CVE-2019-11735: Memory safety bugs
CVE-2019-11738: Content security policy bypass through hash-based sources in directives
CVE-2019-11747: 'Forget about this site' removes sites from pre-loaded HSTS list
CVE-2019-11748: Persistence of WebRTC permissions in a third party context
CVE-2019-11749: Camera information available without prompting using getUserMedia
CVE-2019-11750: Type confusion in Spidermonkey
CVE-2019-11751: Malicious code execution through command line parameters
Fixed In Version:
Firefox ESR 68.1
References:
https://www.mozilla.org/en-US/security/advisories/mfsa2019-26/
Affected branches:
-
master -
3.10-stable