LANDESK Patch News Bulletin: Mozilla has released Firefox ESR version 45.3.0 for Windows 04-AUG-2016

Version 1

    LANDESK Security and Patch News



    ·           (August 4, 2016) Mozilla has released Firefox ESR version 45.3.0 for Windows. Fixed in this released of Firefox ESR 45.3 are the following:
    2016-80 Same-origin policy violation using local HTML file and saved shortcut file
    2016-79 Use-after-free when applying SVG effects
    2016-78 Type confusion in display transformation
    2016-77 Buffer overflow in ClearKey Content Decryption Module (CDM) during video playback
    2016-76 Scripts on marquee tag can execute in sandboxed iframes
    2016-73 Use-after-free in service workers with nested sync events
    2016-72 Use-after-free in DTLS during WebRTC session shutdown
    2016-70 Use-after-free when using alt key and toplevel menus
    2016-67 Stack underflow during 2D graphics rendering
    2016-65 Cairo rendering crash due to memory allocation issue with FFmpeg 0.10
    2016-64 Buffer overflow rendering SVG with bidirectional content
    2016-63 Favicon network connection can persist when page is closed
    2016-62 Miscellaneous memory safety hazards (rv:48.0 / rv:45.3) Please visit the following page for more details:


    New Vulnerabilities

    ·            Vulnerability ID – FIREFOXESRv45.3.0_ENU


    Changed Vulnerabilities

    ·          Vulnerability ID – FIREFOXESRv45.2.0_ENU
    (Added the replacement information.)


    New Patch Downloads

    ·          Firefox_Setup_45.3.0esr_ENU.exe


    Where to Send Feedback

    At LANDESK, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.


    Best regards,

    LANDESK Product Support


    Copyright © 2016 LANDESK Software.  All rights reserved. LANDESK is either a registered trademark or trademark of LANDESK Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.


    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDESK disclaims any liability with respect to this document and LANDESK has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit