Mozilla Firefox: Multiple vulnerabilities

Mozilla Firefox: Multiple vulnerabilities Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which may allow execution of arbitrary code. firefox 2020-03-12 2020-03-12 702638 705000 709346 712182 remote 68.6.0 68.6.0 68.6.0 68.6.0

Mozilla Firefox is a popular open-source web browser from the Mozilla Project.

Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details.

A remote attacker could entice a user to view a specially crafted web page, possibly resulting in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Furthermore, a remote attacker may be able to perform Man-in-the-Middle attacks, obtain sensitive information, spoof the address bar, conduct clickjacking attacks, bypass security restrictions and protection mechanisms, or have other unspecified impact.

There is no known workaround at this time.

All Mozilla Firefox users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=www-client/firefox-68.6.0"

All Mozilla Firefox binary users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-68.6.0"

CVE-2019-11745 CVE-2019-17005 CVE-2019-17008 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-17016 CVE-2019-17017 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-20503 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 MFSA-2019-37 MFSA-2020-03 MFSA-2020-06 MFSA-2020-09 BlueKnight BlueKnight