Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » firefox29.0

Overview

Id firefox29.0
Name Mozilla Firefox 29.0 for Mac OS X (Update) (See Notes)
Vendor Name mozilla
Product Mozilla FireFox
Content Type Critical Critical
Language(s)
Operating System(s) OSX 
Released On 29 Apr 2014 12:00:00

firefox29.0

Mozilla Firefox 29.0 for Mac OS X (Update) (See Notes)

Vendor Name

mozilla

Product

Mozilla FireFox

Released On

29 Apr 2014 12:00:00

Url

http://www.mozilla.org/firefox/29.0/releasenotes/

Description

About This Update:
Firefox 29.0 fixes the following security issues:

  • MFSA 2014-47 Debugger can bypass XrayWrappers with JavaScript.
  • MFSA 2014-46 Use-after-free in nsHostResolve.
  • MFSA 2014-45 Incorrect IDNA domain name matching for wildcard certificates.
  • MFSA 2014-44 Use-after-free in imgLoader while resizing images.
  • MFSA 2014-43 Cross-site scripting (XSS) using history navigations.
  • MFSA 2014-42 Privilege escalation through Web Notification API.
  • MFSA 2014-39 Use-after-free in the Text Track Manager for HTML video.
  • MFSA 2014-38 Buffer overflow when using non-XBL object as XBL.
  • MFSA 2014-37 Out of bounds read while decoding JPG images.
  • MFSA 2014-36 Web Audio memory corruption issues.
  • MFSA 2014-34 Miscellaneous memory safety hazards (rv:29.0 / rv:24.5).
  • Important Notes:

  • By default, deployment will automatically update Firefox.app in the Applications folder.
  • Deployment while Firefox is running will not update the current browser session. The user may re-launch Firefox in order to complete the update.
  • Use the download only option to deploy the installer to the agent's temporary directory (by default, "/tmp/{Agent GUID}"). An administrator may then manually install the update.
  • The detection logic only detects Firefox installations in the current system volume. Multiple installations of Firefox may cause unexpected detection results.
  • System Requirements:
    Mac OS X 10.6
    Mac OS X 10.7
    Mac OS X 10.8
    Mac OS X 10.9

    Related Resources

    Related Vulnerabilities

    CVE-2014-1492   CVE-2014-1518   CVE-2014-1519   CVE-2014-1522   CVE-2014-1523   CVE-2014-1524   CVE-2014-1525   CVE-2014-1526   CVE-2014-1529   CVE-2014-1530   CVE-2014-1531   CVE-2014-1532  

    Related Patches

    Superseded Patches


    Last Updated: 27 May 2016 11:18:48