Bug 1895873
| Summary: | Firefox 82.0.3 available | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | JayJayJazz <jayjayjazz> |
| Component: | firefox | Assignee: | Martin Stransky <stransky> |
| Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | urgent | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 33 | CC: | elxreno, erack, gecko-bugs-nobody, jhorak, kai-engert-fedora, pjasicek, rhughes, rstrode, sandmann, stransky, tpopela, tqueiros |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | All | ||
| Whiteboard: | |||
| Fixed In Version: | firefox-82.0.3-1.fc33 firefox-82.0.3-1.fc32 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2020-11-11 01:20:33 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
JayJayJazz
2020-11-09 10:33:32 UTC
Raising to urgent, as it fixes CVE-2020-26950. Mozilla Security Advisory: https://www.mozilla.org/en-US/security/advisories/mfsa2020-49/#CVE-2020-26950 Reporter: 360政企安全漏洞研究院 in Tianfu Cup 2020 International Cybersecurity Contest Impact critical Description In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition. Mozilla Bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1675905 FEDORA-2020-45d452ec44 has been submitted as an update to Fedora 31. https://bodhi.fedoraproject.org/updates/FEDORA-2020-45d452ec44 FEDORA-2020-fc9085727a has been submitted as an update to Fedora 32. https://bodhi.fedoraproject.org/updates/FEDORA-2020-fc9085727a FEDORA-2020-cb886fd1b3 has been submitted as an update to Fedora 33. https://bodhi.fedoraproject.org/updates/FEDORA-2020-cb886fd1b3 FEDORA-2020-cb886fd1b3 has been pushed to the Fedora 33 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-2020-fc9085727a has been pushed to the Fedora 32 testing repository. In short time you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2020-fc9085727a` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2020-fc9085727a See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2020-45d452ec44 has been pushed to the Fedora 31 testing repository. In short time you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2020-45d452ec44` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2020-45d452ec44 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2020-fc9085727a has been pushed to the Fedora 32 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-2020-93fd31f27d has been pushed to the Fedora 31 testing repository. In short time you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2020-93fd31f27d` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2020-93fd31f27d See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. |