Patch/Configuration Management, Vulnerability Management

Mozilla issues 22 security patches for Firefox

Mozilla issued 22 security fixes, including eight rated critical, with the release of Firefox 45, and the company will no longer support the browser on certain Android platforms.

In addition to the critical patches, there were seven rated high, six moderate and one low.

Several of the more ‘critical' pressing issues repaired included font vulnerabilities in the Graphite 2 library that could be used to induce stack corruption with a malicious graphite font potentially leading to a crash when the font is uploaded. A buffer overflow during ASN.1 decoding in Network Security Services (NSS) libraries could all an attacker to create a specially-crafted certificate that when parsed by NSS could cause a crash or allow the execution of arbitrary code.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.