{"id":"MGASA-2016-0329","summary":"Updated firefox/rootcerts/nss packages fix security vulnerability","details":"Multiple flaws were found in the processing of malformed web content. A\nweb page containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code with the privileges of the user\nrunning Firefox (CVE-2016-5257, CVE-2016-5278, CVE-2016-5270,\nCVE-2016-5272, CVE-2016-5274, CVE-2016-5276, CVE-2016-5277, CVE-2016-5280,\nCVE-2016-5281, CVE-2016-5284, CVE-2016-5250, CVE-2016-5261).\n","modified":"2026-02-02T03:34:33.857345Z","published":"2016-09-28T05:59:24Z","related":["CVE-2016-5250","CVE-2016-5257","CVE-2016-5261","CVE-2016-5270","CVE-2016-5272","CVE-2016-5274","CVE-2016-5276","CVE-2016-5277","CVE-2016-5278","CVE-2016-5280","CVE-2016-5281","CVE-2016-5284"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0329.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=19441"},{"type":"REPORT","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-86/"},{"type":"REPORT","url":"https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/"},{"type":"REPORT","url":"https://rhn.redhat.com/errata/RHSA-2016-1912.html"}],"affected":[{"package":{"name":"rootcerts","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/rootcerts?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"20160826.00-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0329.json"}},{"package":{"name":"nss","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/nss?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.26.0-1.1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0329.json"}},{"package":{"name":"firefox","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.4.0-2.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0329.json"}},{"package":{"name":"firefox-l10n","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox-l10n?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.4.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0329.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}