Bugzilla – Bug 1149293
VUL-0: CVE-2019-11735: MozillaFirefox: Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
Last modified: 2020-02-04 14:45:07 UTC
CVE-2019-11735: Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1 Reporter Mozilla developers and community Impact high Description Mozilla developers and community members Mikhail Gavrilov, Tyson Smith, Marcia Knous, Tom Ritter, Philipp, and Bob Owens reported memory safety bugs present in Firefox 68 and Firefox ESR 68. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. References: https://www.mozilla.org/en-US/security/advisories/mfsa2019-26/#CVE-2019-11735 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1561404%2C1561484%2C1568047%2C1561912%2C1565744%2C1568858%2C1570358 https://bugzilla.redhat.com/show_bug.cgi?id=1748661 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-11735
SUSE-SU-2019:2545-1: An update that fixes 29 vulnerabilities is now available. Category: security (important) Bug References: 1109465,1117473,1123482,1124525,1133810,1138688,1140868,1141322,1145665,1149292,1149293,1149294,1149295,1149296,1149297,1149298,1149299,1149302,1149303,1149304,1149323 CVE References: CVE-2019-11710,CVE-2019-11714,CVE-2019-11716,CVE-2019-11718,CVE-2019-11720,CVE-2019-11721,CVE-2019-11723,CVE-2019-11724,CVE-2019-11725,CVE-2019-11727,CVE-2019-11728,CVE-2019-11733,CVE-2019-11735,CVE-2019-11736,CVE-2019-11738,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11747,CVE-2019-11748,CVE-2019-11749,CVE-2019-11750,CVE-2019-11751,CVE-2019-11752,CVE-2019-11753,CVE-2019-9811,CVE-2019-9812 Sources used: SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (src): MozillaFirefox-68.1.0-3.54.2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (src): MozillaFirefox-68.1.0-3.54.2 SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (src): MozillaFirefox-68.1.0-3.54.2, MozillaFirefox-branding-SLE-68-4.8.5 SUSE Linux Enterprise Module for Desktop Applications 15 (src): MozillaFirefox-68.1.0-3.54.2, MozillaFirefox-branding-SLE-68-4.8.5 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2019:2251-1: An update that fixes 29 vulnerabilities is now available. Category: security (important) Bug References: 1109465,1117473,1123482,1124525,1133810,1138688,1140868,1141322,1145665,1149292,1149293,1149294,1149295,1149296,1149297,1149298,1149299,1149302,1149303,1149304,1149323 CVE References: CVE-2019-11710,CVE-2019-11714,CVE-2019-11716,CVE-2019-11718,CVE-2019-11720,CVE-2019-11721,CVE-2019-11723,CVE-2019-11724,CVE-2019-11725,CVE-2019-11727,CVE-2019-11728,CVE-2019-11733,CVE-2019-11735,CVE-2019-11736,CVE-2019-11738,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11747,CVE-2019-11748,CVE-2019-11749,CVE-2019-11750,CVE-2019-11751,CVE-2019-11752,CVE-2019-11753,CVE-2019-9811,CVE-2019-9812 Sources used: openSUSE Leap 15.1 (src): MozillaFirefox-68.1.0-lp151.2.14.1
openSUSE-SU-2019:2260-1: An update that fixes 29 vulnerabilities is now available. Category: security (important) Bug References: 1109465,1117473,1123482,1124525,1133810,1138688,1140868,1141322,1145665,1149292,1149293,1149294,1149295,1149296,1149297,1149298,1149299,1149302,1149303,1149304,1149323 CVE References: CVE-2019-11710,CVE-2019-11714,CVE-2019-11716,CVE-2019-11718,CVE-2019-11720,CVE-2019-11721,CVE-2019-11723,CVE-2019-11724,CVE-2019-11725,CVE-2019-11727,CVE-2019-11728,CVE-2019-11733,CVE-2019-11735,CVE-2019-11736,CVE-2019-11738,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11747,CVE-2019-11748,CVE-2019-11749,CVE-2019-11750,CVE-2019-11751,CVE-2019-11752,CVE-2019-11753,CVE-2019-9811,CVE-2019-9812 Sources used: openSUSE Leap 15.0 (src): MozillaFirefox-68.1.0-lp150.3.66.1
Closing