firefox (SL7)

By Scientific Linux Team on July 1, 2019

Synopsis: Critical: firefox security update
Advisory ID: SLSA-2019:1603-1
Issue Date: 2019-06-26
CVE Numbers: CVE-2019-11707
CVE-2019-11708
—

Security Fix(es):

* Mozilla: Type confusion in Array.pop (CVE-2019-11707)

* Mozilla: Sandbox escape using Prompt:Open (CVE-2019-11708)
—

SL7
x86_64
firefox-60.7.2-1.el7_6.x86_64.rpm
firefox-debuginfo-60.7.2-1.el7_6.x86_64.rpm
firefox-60.7.2-1.el7_6.i686.rpm
firefox-debuginfo-60.7.2-1.el7_6.i686.rpm

– Scientific Linux Development Team

thunderbird (SL6)

thunderbird (SL7)

SL Security Errata