Page 1 of 1
Firefox 52, ESR 45.8, ESR 52 bugs
Posted: Thu 20 Apr 2017, 01:22
by rufwoof
Description
Mozilla developers and community members Christian Holler, Jon Coppeard, Marcia Knous, David Baron, Mats Palmgren, Ronald Crane, Bob Clary, and Chris Peterson reported memory safety bugs present in Firefox 52, Firefox ESR 45.8, and Firefox ESR 52. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.
https://www.mozilla.org/en-US/security/ ... sa2017-11/
Posted: Thu 20 Apr 2017, 11:13
by Burn_IT
Well why not publish them all so as to make it easy for the world of script kiddies to exploit.
That was not a very clever post.
Posted: Thu 20 Apr 2017, 11:53
by rufwoof
Doesn't Mozilla do that all the time, so any potential hacker is directed to exactly where the weakness is, making it a breeze to write a exploit. They then just need to set up traps for anyone who hasn't upgraded their browser ... again a trivial test.
Posted: Thu 20 Apr 2017, 17:56
by Sailor Enceladus
Interesting. Maybe 52.1esr will
stop the crashing in Slacko 6.3.2 (then again it didn't happen in FF45.8esr so probably not).