In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsThere is no fixed version for RHEL:7
firefox
.
Note: Versions mentioned in the description apply only to the upstream firefox
package and not the firefox
package as distributed by RHEL
.
See How to fix?
for RHEL:7
relevant fixed versions and status.
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.