Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

Mozilla security updates

Number: AV17-170
Date: 14 November 2017

Purpose

The purpose of this advisory is to bring attention to a security update addressing multiple vulnerabilities in Firefox.

Assessment

Mozilla released security updates to address 15 vulnerabilities in Firefox. The severity of these issues ranges from low to critical.

Versions affected:
Firefox versions prior to 57

CVE References: CVE-2017-7828, CVE-2017-7830, CVE-2017-7831, CVE-2017-7832, CVE-2017-7833, CVE-2017-7834, CVE-2017-7835, CVE-2017-7836, CVE-2017-7837, CVE-2017-7838, CVE-2017-7839, CVE-2017-7840, CVE-2017-7842, CVE-2017-7827, CVE-2017-7826

Suggested Action

CCIRC recommends that owner/operators test and deploy the vendor released updates to the affected platforms in accordance with their risk mitigation framework.

References:

https://www.mozilla.org/en-US/security/advisories/mfsa2017-24/

Date modified: