Novell Home

CVE-2014-1520

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2014-1520 at MITRE

Description

maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process.

NVD CVSS v2 Base Score: 6.9 (AV:L/AC:M/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entry: 875803

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 11 SP1
  • MozillaFirefox-debuginfo >= 24.5.0esr-0.3.1
  • mozilla-nspr-debuginfo >= 4.10.4-0.3.1
  • mozilla-nspr-debuginfo-32bit >= 4.10.4-0.3.1
  • mozilla-nss-debuginfo >= 3.16-0.3.1
  • mozilla-nss-debuginfo-32bit >= 3.16-0.3.1
Builds
SAT Patch Nr: 9182
SUSE Linux Enterprise Software Development Kit 11 SP3
  • MozillaFirefox-devel >= 24.5.0esr-0.8.1
  • mozilla-nspr-devel >= 4.10.4-0.3.1
  • mozilla-nss-devel >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.5.0esr-0.8.1
  • MozillaFirefox-branding-SLED >= 24-0.7.36
  • MozillaFirefox-translations >= 24.5.0esr-0.8.1
  • libfreebl3 >= 3.16-0.8.1
  • libsoftokn3 >= 3.16-0.8.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.8.1
  • mozilla-nss-tools >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.5.0esr-0.8.1
  • MozillaFirefox-branding-SLED >= 24-0.7.36
  • MozillaFirefox-translations >= 24.5.0esr-0.8.1
  • libfreebl3 >= 3.16-0.8.1
  • libfreebl3-32bit >= 3.16-0.8.1
  • libsoftokn3 >= 3.16-0.8.1
  • libsoftokn3-32bit >= 3.16-0.8.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nspr-32bit >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.8.1
  • mozilla-nss-32bit >= 3.16-0.8.1
  • mozilla-nss-tools >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Server 11 SP3 for VMware
  • MozillaFirefox >= 24.5.0esr-0.8.1
  • MozillaFirefox-translations >= 24.5.0esr-0.8.1
  • libfreebl3 >= 3.16-0.8.1
  • libsoftokn3 >= 3.16-0.8.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.8.1
  • mozilla-nss-tools >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Server 11 SP3 for VMware
  • MozillaFirefox >= 24.5.0esr-0.8.1
  • MozillaFirefox-translations >= 24.5.0esr-0.8.1
  • libfreebl3 >= 3.16-0.8.1
  • libfreebl3-32bit >= 3.16-0.8.1
  • libsoftokn3 >= 3.16-0.8.1
  • libsoftokn3-32bit >= 3.16-0.8.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nspr-32bit >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.8.1
  • mozilla-nss-32bit >= 3.16-0.8.1
  • mozilla-nss-tools >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Server 11 SP3
  • MozillaFirefox >= 24.5.0esr-0.8.1
  • MozillaFirefox-branding-SLED >= 24-0.7.36
  • MozillaFirefox-translations >= 24.5.0esr-0.8.1
  • libfreebl3 >= 3.16-0.8.1
  • libfreebl3-x86 >= 3.16-0.8.1
  • libsoftokn3 >= 3.16-0.8.1
  • libsoftokn3-x86 >= 3.16-0.8.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nspr-x86 >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.8.1
  • mozilla-nss-tools >= 3.16-0.8.1
  • mozilla-nss-x86 >= 3.16-0.8.1
Builds
SAT Patch Nr: 9185
SUSE Linux Enterprise Server 11 SP2 LTSS
  • MozillaFirefox >= 24.5.0esr-0.3.1
  • MozillaFirefox-branding-SLED >= 24-0.4.10.14
  • MozillaFirefox-translations >= 24.5.0esr-0.3.1
  • libfreebl3 >= 3.16-0.3.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nspr-devel >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.3.1
  • mozilla-nss-devel >= 3.16-0.3.1
  • mozilla-nss-tools >= 3.16-0.3.1
Builds
SAT Patch Nr: 9186
SUSE Linux Enterprise Server 11 SP2 LTSS
  • MozillaFirefox >= 24.5.0esr-0.3.1
  • MozillaFirefox-branding-SLED >= 24-0.4.10.14
  • MozillaFirefox-translations >= 24.5.0esr-0.3.1
  • libfreebl3 >= 3.16-0.3.1
  • libfreebl3-32bit >= 3.16-0.3.1
  • mozilla-nspr >= 4.10.4-0.3.1
  • mozilla-nspr-32bit >= 4.10.4-0.3.1
  • mozilla-nspr-devel >= 4.10.4-0.3.1
  • mozilla-nss >= 3.16-0.3.1
  • mozilla-nss-32bit >= 3.16-0.3.1
  • mozilla-nss-devel >= 3.16-0.3.1
  • mozilla-nss-tools >= 3.16-0.3.1
Builds
SAT Patch Nr: 9186

© 2014 Novell