AVG-1127 log

Package firefox
Status Fixed
Severity Critical
Type multiple issues
Affected 74.0.1-1
Fixed 75.0-1
Current 133.0.3-1 [extra-testing]
133.0-1 [extra]
Ticket None
Created Tue Apr 7 15:00:24 2020
Issue Severity Remote Type Description
CVE-2020-6826 Critical Yes Arbitrary code execution
Several memory safety issues have been found in Firefox before 75.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with...
CVE-2020-6825 Critical Yes Arbitrary code execution
Several memory safety issues have been found in Firefox before 75.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with...
CVE-2020-6824 Medium No Information disclosure
A security issue has been found in Firefox before 75.0, where generated passwords may be identical on the same site between separate private browsing...
CVE-2020-6823 Medium Yes Access restriction bypass
A security issue has been found in Firefox before 75.0, where a malicious extension could have called browser.identity.launchWebAuthFlow, controlling the...
CVE-2020-6821 High Yes Information disclosure
An information disclosure issue has been found in Firefox before 75.0 and Thunderbird before 68.7.0. When reading from areas partially or fully outside the...
Date Advisory Package Type
08 Apr 2020 ASA-202004-8 firefox multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-12/