Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

Mozilla security updates

Number: AV18-048
Date: 20 March 2018

Purpose

The purpose of this advisory is to bring attention to Mozilla security updates addressing multiple vulnerabilities in Firefox and Firefox ESR.

Assessment

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR.

Affected Products:

  • Firefox versions prior to 59.0.1
  • Firefox ESR versions prior to 52.7.2

CVE Reference: CVE-2018-5146, CVE-2018-5147

Suggested Action

CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.

References:

https://www.mozilla.org/en-US/security/advisories/mfsa2018-08/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5146
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5147

Date modified: