Summary: | <www-client/firefox{,-bin}-{45.6.0,50.1.0}: multiple vulnerabilities (MFSA-2016-{94,95}) (CVE-2016-{9893,9895,9897,9898,9899,9900,9901,9902,9904,9905}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Thomas Deutschmann (RETIRED) <whissi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | mozilla |
Priority: | Normal | Flags: | kensington:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.mozilla.org/en-US/security/advisories/mfsa2016-95/ | ||
Whiteboard: | A2 [glsa cve] | ||
Package list: |
=www-client/firefox-45.6.0
=www-client/firefox-bin-45.6.0 amd64 x86
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 601320 |
Description
Thomas Deutschmann (RETIRED)
2016-12-13 21:50:26 UTC
Ebuilds are in tree, I am sure thunderbird is effected as well and will push the same fix in coming days. @ Arches, please test and mark stable: =www-client/firefox-45.6.0 (In reply to Thomas Deutschmann from comment #2) > @ Arches, > > please test and mark stable: =www-client/firefox-45.6.0 Please halt stabilization 45.6.1 has been rolled and will hit mirrors shortly (In reply to Jory A. Pratt from comment #3) > (In reply to Thomas Deutschmann from comment #2) > > @ Arches, > > > > please test and mark stable: =www-client/firefox-45.6.0 > > Please halt stabilization 45.6.1 has been rolled and will hit mirrors shortly Go ahead and stabilize 45.6.0 the release update has been delayed for some unknown reason at this time. ppc stable ppc64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. @ Arches, please test and mark stable: =www-client/firefox-bin-45.6.0 amd64 x86 amd64 x86 stable. This issue was resolved and addressed in GLSA 201701-15 at https://security.gentoo.org/glsa/201701-15 by GLSA coordinator Thomas Deutschmann (whissi). Re-opening for cleanup. @ Maintainer(s): Please drop <www-client/firefox{,-bin}-45.6.0 or apply masks indicating a security problem. Cleanup PR: https://github.com/gentoo/gentoo/pull/3390 Cleaned up via a899bb7607b7aa7db566bd3cdc2c8e1d45d7651d. All done, closing ... |