Avatar for Username

Cerca nel supporto

Attenzione alle mail truffa. Mozilla non chiederà mai di chiamare o mandare messaggi a un numero di telefono o di inviare dati personali. Segnalare qualsiasi attività sospetta utilizzando l'opzione “Segnala abuso”.

Ulteriori informazioni

Questa discussione è archiviata. Inserire una nuova richiesta se occorre aiuto.

Explain "Critical" security advisory for 60.3ESR

  • 3 risposte
  • 1 ha questo problema
  • 1 visualizzazione
  • Ultima risposta di mvk87

mvk87
mvk87
more options

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details?

[url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png/img/url

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details? [url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png[/img][/url]

Soluzione scelta

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Leggere questa risposta nel contesto 👍 0

Tutte le risposte (3)

mvk87
mvk87 Utente che ha posto la domanda
more options

No way to edit. Direct link for image above

https://i.postimg.cc/RZr1G8QH/Screen-Shot-2018-10-24-at-1-55-50-PM.png

James
James
  • Moderator
  • Top 10 Contributor
more options

The details about each is on the page. It mentions "Fixed in Firefox ESR 60.3" on top of page.

Firefox Releases https://www.mozilla.org/security/known-vulnerabilities/firefox/

Firefox ESR (currently 60 ESR) https://www.mozilla.org/security/known-vulnerabilities/firefox-esr/

Modificato da James il

mvk87
mvk87 Utente che ha posto la domanda
more options

Soluzione scelta

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Modificato da mvk87 il