Join the Mozilla’s Test Days event from Dec 2–8 to test the new Firefox address bar on Firefox Beta 134 and get a chance to win Mozilla swag vouchers! 🎁

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Cuireadh an snáithe seo sa chartlann. Cuir ceist nua má tá cabhair uait.

Explain "Critical" security advisory for 60.3ESR

  • 3 fhreagra
  • 1 leis an bhfadhb seo
  • 1 view
  • Freagra is déanaí ó mvk87

mvk87
mvk87
more options

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details?

[url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png/img/url

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details? [url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png[/img][/url]

Réiteach roghnaithe

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Read this answer in context 👍 0

All Replies (3)

mvk87
mvk87 Úinéir na ceiste
more options

No way to edit. Direct link for image above

https://i.postimg.cc/RZr1G8QH/Screen-Shot-2018-10-24-at-1-55-50-PM.png

James
James
  • Moderator
  • Top 10 Contributor
more options

The details about each is on the page. It mentions "Fixed in Firefox ESR 60.3" on top of page.

Firefox Releases https://www.mozilla.org/security/known-vulnerabilities/firefox/

Firefox ESR (currently 60 ESR) https://www.mozilla.org/security/known-vulnerabilities/firefox-esr/

Athraithe ag James ar

mvk87
mvk87 Úinéir na ceiste
more options

Réiteach Roghnaithe

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Athraithe ag mvk87 ar