In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade RHEL:7
firefox
to version 0:38.0-3.el7_1 or higher.
This issue was patched in RHSA-2015:0988
.
Note: Versions mentioned in the description apply only to the upstream firefox
package and not the firefox
package as distributed by RHEL
.
See How to fix?
for RHEL:7
relevant fixed versions and status.
Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538.