Skip to main content
Tag

mozilla patch

||

Critical Vulnerability with Mozilla Thunderbird Being Exploited

By Blog, Patch Management

Critical Vulnerability with Mozilla Thunderbird Being Exploited

According to a security report issued by Mozilla, the company has patched multiple vulnerabilities in Thunderbird.

A rare vulnerability for openSUSE has been released to resolve 13 vulnerabilities with Mozilla Thunderbird. These vulnerabilities can be potentially exploited in browser or browser-like contexts. Ratings of Critical are indicative of an active exploit or when exploitation is likely in the very near future.

The following versions of SUSE are impacted:

  • SUSE Linux Enterprise 12

Use Syxsense to see if you are vulnerable—just search within Patch Manager for the following updates and if any of these are detected we would recommend these are deployed urgently:

  • MozillaThunderbird-60.6.1-82.1
  • MozillaThunderbird-buildsymbols-60.6.1-82.1
  • MozillaThunderbird-translations-common-60.6.1-82.1
  • MozillaThunderbird-translations-other-60.6.1-82.1

Start a Free Trial

Try Syxsense today and start patching your IT environment with a powerful and easy-to-use IT management toolset.
Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo
April 5, 2019
Love0

Rare Red Hat Critical Update

By News, Uncategorized

Linux Patches Security Concerns with Firefox

Almost at urban legend status, Red Hat rarely rates updates as critical. Well, it’s not myth now, as an update is available for Red Hat Enterprise Linux 6 and 7. With a CVSS score of 8.8, we are recommending this update be actioned quickly.
An important fact to note, after installing the update, Firefox must be restarted for the changes to take effect.
This update upgrades Firefox to version 60.5.0 ESR.

Security Fixes:
• Mozilla: Use-after-free parsing HTML5 stream (CVE-2018-18500)
• Mozilla: Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5 (CVE-2018-18501)
• Mozilla: Privilege escalation through IPC channel messages (CVE-2018-18505)

Is your patching strategy ready?

Having a strategic patch roll-out implemented is key to secure software updating. However, your plan and patching software must be flexible enough to deal with a rogue critical update. Will you be ready to jump into action when an emergency security update is released?

With Syxsense, you have the stability of a strategic roll-out, but also the capabilities of a response team. This solution can patch devices with Windows, Mac, or Linux operating systems. Our content library has a wide range of major software vendors.
Learn more about securing your devices in Syxsense Realtime Security.

Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo
February 4, 2019
Love0