Join the Mozilla’s Test Days event from Dec 2–8 to test the new Firefox address bar on Firefox Beta 134 and get a chance to win Mozilla swag vouchers! 🎁

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Natao arisiva ity resaka mitohy ity. Mametraha fanontaniana azafady raha mila fanampiana.

Explain "Critical" security advisory for 60.3ESR

  • 3 valiny
  • 1 manana an'ity olana ity
  • 1 view
  • Valiny farany nomen'i mvk87

mvk87
mvk87
more options

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details?

[url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png/img/url

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details? [url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png[/img][/url]

Vahaolana nofidina

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Hamaky an'ity valiny ity @ sehatra 👍 0

All Replies (3)

mvk87
mvk87 Tompon'ny fanontaniana
more options

No way to edit. Direct link for image above

https://i.postimg.cc/RZr1G8QH/Screen-Shot-2018-10-24-at-1-55-50-PM.png

James
James
  • Moderator
  • Top 10 Contributor
more options

The details about each is on the page. It mentions "Fixed in Firefox ESR 60.3" on top of page.

Firefox Releases https://www.mozilla.org/security/known-vulnerabilities/firefox/

Firefox ESR (currently 60 ESR) https://www.mozilla.org/security/known-vulnerabilities/firefox-esr/

Novain'i James t@

mvk87
mvk87 Tompon'ny fanontaniana
more options

Vahaolana Nofidina

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Novain'i mvk87 t@