Synopsis: Important: firefox security update
Advisory ID:       SLSA-2019:0373-1
Issue Date:        2019-02-19
CVE Numbers:       CVE-2018-18356
                   CVE-2019-5785
--

This update upgrades Firefox to version 60.5.1 ESR.

Security Fix(es):

* chromium-browser, mozilla: Use after free in Skia (CVE-2018-18356)

* mozilla: Integer overflow in Skia (CVE-2019-5785)
--

SL6
  x86_64
    firefox-60.5.1-1.el6_10.x86_64.rpm
    firefox-debuginfo-60.5.1-1.el6_10.x86_64.rpm
    firefox-60.5.1-1.el6_10.i686.rpm
    firefox-debuginfo-60.5.1-1.el6_10.i686.rpm
  i386
    firefox-60.5.1-1.el6_10.i686.rpm
    firefox-debuginfo-60.5.1-1.el6_10.i686.rpm

- Scientific Linux Development Team