* CVE-2020-12405 (ESR too) Description: "When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash." * CVE-2020-12406 (ESR too) Description: "Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code." * CVE-2020-12407 Description: "Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content." * CVE-2020-12408 Description: "When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar." * CVE-2020-12409 Description: "When using certain blank characters in a URL, they where incorrectly rendered as spaces instead of an encoded URL." * CVE-2020-12410 (ESR too) Description: "Mozilla developers Tom Tung and Karl Tomlinson reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code." * CVE-2020-12411 Description: "Mozilla developers :Gijs (he/him), Randell Jesup reported memory safety bugs present in Firefox 76. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code."
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c87110015e9ae506182e659017a988f98f33d2a4 commit c87110015e9ae506182e659017a988f98f33d2a4 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-06-04 07:47:15 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-06-04 07:47:15 +0000 www-client/firefox: amd64 & x86 stable Bug: https://bugs.gentoo.org/726844 Package-Manager: Portage-2.3.100, Repoman-2.3.22 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> www-client/firefox/firefox-68.9.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
arm64 stable ---- @maintainer(s), please cleanup
This issue was resolved and addressed in GLSA 202006-07 at https://security.gentoo.org/glsa/202006-07 by GLSA coordinator Aaron Bauman (b-man).
re-opened for cleanup
ping
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4f42682804e5f29da65addd50349c34d2cde0059 commit 4f42682804e5f29da65addd50349c34d2cde0059 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-06-30 20:27:56 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-06-30 20:29:16 +0000 www-client/firefox: security cleanup Bug: https://bugs.gentoo.org/726844 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> www-client/firefox/Manifest | 277 --------- www-client/firefox/firefox-68.8.0.ebuild | 920 ----------------------------- www-client/firefox/firefox-76.0-r1.ebuild | 934 ------------------------------ www-client/firefox/firefox-76.0.1.ebuild | 934 ------------------------------ 4 files changed, 3065 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b3852acd8e7f5aa182c6d65bddae0019dd511116 commit b3852acd8e7f5aa182c6d65bddae0019dd511116 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-06-30 20:26:53 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-06-30 20:29:15 +0000 www-client/firefox-bin: security cleanup Bug: https://bugs.gentoo.org/726844 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> www-client/firefox-bin/Manifest | 372 ----------------------- www-client/firefox-bin/firefox-bin-68.8.0.ebuild | 280 ----------------- www-client/firefox-bin/firefox-bin-68.9.0.ebuild | 280 ----------------- www-client/firefox-bin/firefox-bin-76.0.1.ebuild | 296 ------------------ www-client/firefox-bin/firefox-bin-76.0.ebuild | 296 ------------------ 5 files changed, 1524 deletions(-)