{"id":"MGASA-2017-0023","summary":"Updated firefox packages fix security vulnerability","details":"Multiple flaws were found in the processing of malformed web content. A\nweb page containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code with the privileges of the user\nrunning Firefox (CVE-2017-5373, CVE-2017-5375, CVE-2017-5376,\nCVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386,\nCVE-2017-5390, CVE-2017-5396).\n","modified":"2026-04-16T01:46:17.856527205Z","published":"2017-01-27T09:19:09Z","upstream":["CVE-2017-5373","CVE-2017-5375","CVE-2017-5376","CVE-2017-5378","CVE-2017-5380","CVE-2017-5383","CVE-2017-5386","CVE-2017-5390","CVE-2017-5396"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0023.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=20178"},{"type":"ADVISORY","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/"},{"type":"WEB","url":"https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/"},{"type":"WEB","url":"https://rhn.redhat.com/errata/RHSA-2017-0190.html"}],"affected":[{"package":{"name":"firefox","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.7.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0023.json"}},{"package":{"name":"firefox-l10n","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox-l10n?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.7.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0023.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}