Alert GCSA-16024 - Vulnerabilita' nei prodotti Mozilla (Firefox)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-16024
Data: 28 aprile 2016
Titolo: Vulnerabilita' nei prodotti Mozilla (Firefox)
******************************************************************
:: Descrizione del problema
E' stata rilasciata una nuova versione del browser Mozilla Firefox
che risolve varie vulnerabilita' potenzialmente sfruttabili da
aggressori per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 46.0
Firefox versioni precedenti alla ESR 38.8
Firefox versioni precedenti alla ESR 45.1
:: Impatto
Denial of service
Esecuzione di codice arbitrario da remoto
Accesso al sistema
Modifica di informazioni di sistema
:: Soluzioni
Aggiornare Firefox alla versione 46.0
https://www.mozilla.org/it/firefox/new/
:: Riferimenti
Mozilla Security Advisory
https://www.mozilla.org/en-US/firefox/46.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox/#firefox46
https://www.mozilla.org/en-US/security/advisories/mfsa2016-39/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-40/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-41/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-42/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-43/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-44/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-45/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-46/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-47/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-48/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2805
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2809
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2811
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2820
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2936-1/
Red Hat Security Advisory
http://rhn.redhat.com/errata/RHSA-2016-0695.html
Slackware linux
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.357064
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFXIi1zwZxMk2USYEIRAs4AAKC9jl0pXq4cmtuaKPIqSihdgp0ioACgkA0Z
nhd8wTnPBxQVeMfa4aylGlc=
=PS8k
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-16024
Data: 28 aprile 2016
Titolo: Vulnerabilita' nei prodotti Mozilla (Firefox)
******************************************************************
:: Descrizione del problema
E' stata rilasciata una nuova versione del browser Mozilla Firefox
che risolve varie vulnerabilita' potenzialmente sfruttabili da
aggressori per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 46.0
Firefox versioni precedenti alla ESR 38.8
Firefox versioni precedenti alla ESR 45.1
:: Impatto
Denial of service
Esecuzione di codice arbitrario da remoto
Accesso al sistema
Modifica di informazioni di sistema
:: Soluzioni
Aggiornare Firefox alla versione 46.0
https://www.mozilla.org/it/firefox/new/
:: Riferimenti
Mozilla Security Advisory
https://www.mozilla.org/en-US/firefox/46.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox/#firefox46
https://www.mozilla.org/en-US/security/advisories/mfsa2016-39/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-40/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-41/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-42/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-43/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-44/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-45/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-46/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-47/
https://www.mozilla.org/en-US/security/advisories/mfsa2016-48/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2805
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2809
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2811
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2820
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2936-1/
Red Hat Security Advisory
http://rhn.redhat.com/errata/RHSA-2016-0695.html
Slackware linux
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.357064
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFXIi1zwZxMk2USYEIRAs4AAKC9jl0pXq4cmtuaKPIqSihdgp0ioACgkA0Z
nhd8wTnPBxQVeMfa4aylGlc=
=PS8k
-----END PGP SIGNATURE-----