Novell Home

CVE-2013-5614

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-5614 at MITRE

Description

Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attackers to bypass intended sandbox restrictions via a crafted web site.

NVD CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N)

Novell/SUSE information

Novell Bugzilla entry: 854370

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SLE 11 SP3 DEBUGINFO
  • MozillaFirefox-debuginfo >= 24.2.0esr-0.7.1
  • MozillaFirefox-debugsource >= 24.2.0esr-0.7.1
  • mozilla-nss-debuginfo >= 3.15.3.1-0.7.1
  • mozilla-nss-debugsource >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Software Development Kit 11 SP3
  • MozillaFirefox-devel >= 24.2.0esr-0.7.1
  • mozilla-nss-devel >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.2.0esr-0.7.1
  • MozillaFirefox-branding-SLED >= 24-0.7.4
  • MozillaFirefox-translations >= 24.2.0esr-0.7.1
  • libfreebl3 >= 3.15.3.1-0.7.1
  • libsoftokn3 >= 3.15.3.1-0.7.1
  • mozilla-nss >= 3.15.3.1-0.7.1
  • mozilla-nss-tools >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Server 11 SP3 for VMware
  • MozillaFirefox >= 24.2.0esr-0.7.1
  • MozillaFirefox-translations >= 24.2.0esr-0.7.1
  • libfreebl3 >= 3.15.3.1-0.7.1
  • libsoftokn3 >= 3.15.3.1-0.7.1
  • mozilla-nss >= 3.15.3.1-0.7.1
  • mozilla-nss-tools >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Server 11 SP3 for VMware
  • MozillaFirefox >= 24.2.0esr-0.7.1
  • MozillaFirefox-translations >= 24.2.0esr-0.7.1
  • libfreebl3 >= 3.15.3.1-0.7.1
  • libfreebl3-32bit >= 3.15.3.1-0.7.1
  • libsoftokn3 >= 3.15.3.1-0.7.1
  • libsoftokn3-32bit >= 3.15.3.1-0.7.1
  • mozilla-nss >= 3.15.3.1-0.7.1
  • mozilla-nss-32bit >= 3.15.3.1-0.7.1
  • mozilla-nss-tools >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.2.0esr-0.7.1
  • MozillaFirefox-branding-SLED >= 24-0.7.4
  • MozillaFirefox-translations >= 24.2.0esr-0.7.1
  • libfreebl3 >= 3.15.3.1-0.7.1
  • libfreebl3-x86 >= 3.15.3.1-0.7.1
  • libsoftokn3 >= 3.15.3.1-0.7.1
  • libsoftokn3-x86 >= 3.15.3.1-0.7.1
  • mozilla-nss >= 3.15.3.1-0.7.1
  • mozilla-nss-tools >= 3.15.3.1-0.7.1
  • mozilla-nss-x86 >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.2.0esr-0.7.1
  • MozillaFirefox-branding-SLED >= 24-0.7.4
  • MozillaFirefox-translations >= 24.2.0esr-0.7.1
  • libfreebl3 >= 3.15.3.1-0.7.1
  • libfreebl3-32bit >= 3.15.3.1-0.7.1
  • libsoftokn3 >= 3.15.3.1-0.7.1
  • libsoftokn3-32bit >= 3.15.3.1-0.7.1
  • mozilla-nss >= 3.15.3.1-0.7.1
  • mozilla-nss-32bit >= 3.15.3.1-0.7.1
  • mozilla-nss-tools >= 3.15.3.1-0.7.1
Builds
SAT Patch Nr: 8657

© 2014 Novell