Context Navigation

← Previous Ticket
Next Ticket →

#7272 closed enhancement (fixed)

firefox-43.0.1

Reported by:	Fernando de Oliveira	Owned by:	Fernando de Oliveira
Priority:	low	Milestone:	7.9
Component:	BOOK	Version:	SVN
Severity:	normal	Keywords:
Cc:

Description

You may have noticed that I include the known-vulnerabilities in the subsequent release, because it is always delayed, and I failed to find them when creating the ticket.

This 43.0.1 version is not relevant for BLFS, as stated in the Release notes for Firefox 43.0.1 page (displayed using version 43.0): Congrats! You’re using the latest version of Firefox.

https://ftp.mozilla.org/pub/firefox/releases/43.0.1/source/firefox-43.0.1.source.tar.xz

https://ftp.mozilla.org/pub/firefox/releases/43.0.1/SHA512SUMS

9093496037c4511ecfe8d6e948299c53add11260732607079f19a3e4863cace524c59ea86bfbf8b6c874a64438852d79cdaac7b7efff38510ba984064cdf9fc7 source/firefox-43.0.1.source.tar.xz

https://ftp.mozilla.org/pub/firefox/releases/43.0.1/SHA512SUMS.asc

https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox/

Critical
 • 2015-149 Cross-site reading attack through data and view-source URIs
 • 2015-148 Privilege escalation vulnerabilities in WebExtension APIs
 • 2015-138 Use-after-free in WebRTC when datachannel is used after
   being destroyed
 • 2015-134 Miscellaneous memory safety hazards (rv:43.0 / rv:38.5)

High
 • 2015-147 Integer underflow and buffer overflow processing MP4
   metadata in libstagefright
 • 2015-146 Integer overflow in MP4 playback in 64-bit versions
 • 2015-145 Underflow through code inspection
 • 2015-140 Cross-origin information leak through web workers error
   events
 • 2015-139 Integer overflow allocating extremely large textures
 • 2015-136 Same-origin policy violation using perfomance.getEntries and
   history navigation
 • 2015-135 Crash with JavaScript variable assignment with unboxed
   objects

Moderate
 • 2015-144 Buffer overflows found through code inspection
 • 2015-143 Linux file chooser crashes on malformed images due to flaws
   in Jasper library
 • 2015-137 Firefox allows for control characters to be set in cookies

Low
 • 2015-142 DOS due to malformed frames in HTTP/2
 • 2015-141 Hash in data URI is incorrectly parsed

https://www.mozilla.org/en-US/firefox/43.0.1/releasenotes/

Release Notes

43.0.1
Firefox Release

December 18, 2015

Version 43.0.1, first offered to Release channel users on December 18,
2015

We'd also like to extend a special thank you to all of the new
Mozillians who contributed to this release of Firefox!

Fixed

    Prepare to use SHA-256 signing certificate for Windows builds, to
    meet new Microsoft signing requirement (1079858)

    Reference: Release notes for Firefox 43.0.1

All Firefox downloads

Congrats! You’re using the latest version of Firefox.

Change History (2)

comment:1 by Fernando de Oliveira, 8 years ago

Owner:	changed from blfs-book@… to Fernando de Oliveira
Status:	new → assigned

comment:2 by Fernando de Oliveira, 8 years ago

Resolution:	→ fixed
Status:	assigned → closed

Fixed at r16743.

Note: See TracTickets for help on using tickets.

Download in other formats: