AVG-1096 log

Package firefox
Status Fixed
Severity Critical
Type multiple issues
Affected 72.0.2-1
Fixed 73.0-1
Current 81.0-1 [extra]
Ticket None
Created Tue Feb 11 15:10:13 2020
Issue Severity Remote Type Description
CVE-2020-6801 Critical Yes Arbitrary code execution
Several memory safety bugs have been found in Firefox before 73.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with...
CVE-2020-6800 Critical Yes Arbitrary code execution
Several memory safety bugs have been found in Firefox before 73.0 and Thunderbird before 68.5. Some of these bugs showed evidence of memory corruption and...
CVE-2020-6798 Medium Yes Cross-site scripting
An incorrect parsing of template could result in Javascript injection in Firefox before 73.0 and Thunderbird before 68.5. If a <template> tag was used in a...
CVE-2020-6796 High Yes Arbitrary code execution
A missing bounds check on shared memory read in the parent process has been found in Firefox before 73.0. A content process could have modified shared...
Date Advisory Package Description
11 Feb 2020 ASA-202002-5 firefox multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-05