Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:4107-1 Issue Date: 2019-12-05 CVE Numbers: CVE-2019-17008 CVE-2019-17010 CVE-2019-17005 CVE-2019-17011 CVE-2019-17012 -- Security Fix(es): * Mozilla: Use-after-free in worker destruction (CVE-2019-17008) * Mozilla: Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3 (CVE-2019-17012) * Mozilla: Buffer overflow in plain text serializer (CVE-2019-17005) * Mozilla: Use-after-free when performing device orientation checks (CVE-2019-17010) * Mozilla: Use-after-free when retrieving a document in antitracking (CVE-2019-17011) -- SL7 x86_64 firefox-68.3.0-1.el7_7.x86_64.rpm firefox-debuginfo-68.3.0-1.el7_7.x86_64.rpm firefox-68.3.0-1.el7_7.i686.rpm firefox-debuginfo-68.3.0-1.el7_7.i686.rpm - Scientific Linux Development Team