Alert GCSA-17049 - Vulnerabilita' nei prodotti Mozilla (Firefox)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17049
Data: 10 Agosto 2017
Titolo: Vulnerabilita' nei prodotti Mozilla (Firefox)
******************************************************************
:: Descrizione del problema
E' stata rilasciata una nuova versione del browser Mozilla Firefox
che risolve varie vulnerabilita' potenzialmente sfruttabili da
aggressori per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 55.0
Firefox versioni precedenti alla ESR 52.3
:: Impatto
Esecuzione di codice arbitrario
Denial of service
Accesso ad informazioni sensibili
Attacchi di tipo cross-site scripting
Bypass dei controlli di sicurezza
:: Soluzioni
Aggiornare Firefox all'ultima versione
https://www.mozilla.org/it/firefox/new/
:: Riferimenti
Mozilla Security Advisories
https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/
https://www.mozilla.org/en-US/security/advisories/mfsa2017-19/
https://www.mozilla.org/en-US/firefox/55.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox/#firefox55
US-CERT
https://www.us-cert.gov/ncas/current-activity/2017/08/08/Mozilla-Releases-Security-Updates
SecurityTracker.com
http://www.securitytracker.com/id/1039124
Riferimenti CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7779
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7780
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7782
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7783
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7785
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7786
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7790
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7809
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlmMW/kACgkQwZxMk2USYELjoQCgibsgPYCiSC/hpFgz0D/af2AP
g8EAoNPfUOSwFKUyx5RFUXQPOu0nGD01
=X6ZQ
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17049
Data: 10 Agosto 2017
Titolo: Vulnerabilita' nei prodotti Mozilla (Firefox)
******************************************************************
:: Descrizione del problema
E' stata rilasciata una nuova versione del browser Mozilla Firefox
che risolve varie vulnerabilita' potenzialmente sfruttabili da
aggressori per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 55.0
Firefox versioni precedenti alla ESR 52.3
:: Impatto
Esecuzione di codice arbitrario
Denial of service
Accesso ad informazioni sensibili
Attacchi di tipo cross-site scripting
Bypass dei controlli di sicurezza
:: Soluzioni
Aggiornare Firefox all'ultima versione
https://www.mozilla.org/it/firefox/new/
:: Riferimenti
Mozilla Security Advisories
https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/
https://www.mozilla.org/en-US/security/advisories/mfsa2017-19/
https://www.mozilla.org/en-US/firefox/55.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox/#firefox55
US-CERT
https://www.us-cert.gov/ncas/current-activity/2017/08/08/Mozilla-Releases-Security-Updates
SecurityTracker.com
http://www.securitytracker.com/id/1039124
Riferimenti CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7779
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7780
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7782
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7783
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7785
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7786
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7790
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7809
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlmMW/kACgkQwZxMk2USYELjoQCgibsgPYCiSC/hpFgz0D/af2AP
g8EAoNPfUOSwFKUyx5RFUXQPOu0nGD01
=X6ZQ
-----END PGP SIGNATURE-----