LANDESK Patch News Bulletin: Mozilla has Released Firefox version 31.0 for Windows 23-JUL-2014

Version 1

    LANDESK Security and Patch News

     

    Headlines

    ·          (July 24,2014) Mozilla has released Firefox version 31.0. The following issues are fixed in Firefox 31

    MFSA 2014-66 IFRAME sandbox same-origin access through redirect

    MFSA 2014-65 Certificate parsing broken by non-standard character encoding

    MFSA 2014-64 Crash in Skia library when scaling high quality images

    MFSA 2014-63 Use-after-free while when manipulating certificates in the trusted cache

    MFSA 2014-62 Exploitable WebGL crash with Cesium JavaScript library

    MFSA 2014-61 Use-after-free with FireOnStateChange event

    MFSA 2014-60 Toolbar dialog customization event spoofing

    MFSA 2014-59 Use-after-free in DirectWrite font handling

    MFSA 2014-58 Use-after-free in Web Audio due to incorrect control message ordering

    MFSA 2014-57 Buffer overflow during Web Audio buffering for playback

    MFSA 2014-56 Miscellaneous memory safety hazards (rv:31.0 / rv:24.7)

    Please visit the following page for more details: http://www.mozilla.org/security/known-vulnerabilities/firefox.html

     

     

    New Vulnerabilities

    ·          Vulnerability ID – FIREFOXv31.0_ENU

     

    Changed Vulnerabilities

    ·          Vulnerability ID – FIREFOXv30.0_ENU Added the replacement information.)

     

    New Patch Downloads

    ·          firefox_setup_31.0_enu.exe

     

     

    Where to Send Feedback

    At LANDESK, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.

     

    Best regards,

    LANDESK Product Support

     

    Copyright © 2014 LANDESK Software.  All rights reserved. LANDESK is either a registered trademark or trademark of LANDESK Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.

     

    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDESK disclaims any liability with respect to this document and LANDESK has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit http://www.LANDESK.com.