We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Denc nañu waxtaan wii. Yónneel yeneen laaj soo soxlaa ndimbal.

Explain "Critical" security advisory for 60.3ESR

  • 3 tontu
  • 1 am na jafe-jafe bii
  • 5 views
  • i mujjee tontu mooy mvk87

mvk87
mvk87
more options

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details?

[url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png/img/url

https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/ Shows "Critical," but no details except for CVEs below beginning with "high." So question: is there a critical vulnerability fixed in this version or not? If a critical vulnerability has been fixed, where do I find details? [url=https://postimg.cc/KRNg80WG][img]https://i.postimg.cc/KRNg80WG/Screen-Shot-2018-10-24-at-1-55-50-PM.png[/img][/url]

Saafara biñ tànn

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

Jàng tontu lii ci fi mu bokk 👍 0

All Replies (3)

mvk87
mvk87 Ki laajte
more options

No way to edit. Direct link for image above

https://i.postimg.cc/RZr1G8QH/Screen-Shot-2018-10-24-at-1-55-50-PM.png

James
James
  • Top 25 Contributor
  • Moderator
more options

The details about each is on the page. It mentions "Fixed in Firefox ESR 60.3" on top of page.

Firefox Releases https://www.mozilla.org/security/known-vulnerabilities/firefox/

Firefox ESR (currently 60 ESR) https://www.mozilla.org/security/known-vulnerabilities/firefox-esr/

James moo ko soppali ci

mvk87
mvk87 Ki laajte
more options

Saafara yiñ Tànn

OK, seeing those 2 re. memory corruption now if I scroll to bottom of page. Assumed critical fixed would be listed first just below the critical heading in red, instead of appearing after ones less severe: high, moderate, low. Hadn't thought it was necessary to keep scrolling down the page to see those. This presentation showing the critical after low doesn't make a lot of sense and introduces confusion. But will know in future where to look.

mvk87 moo ko soppali ci