{"id":"MGASA-2016-0420","summary":"Updated firefox packages fix security vulnerabilities","details":"Multiple flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or, potentially,\nexecute arbitrary code with the privileges of the user running Firefox\n(CVE-2016-9893, CVE-2016-9899, CVE-2016-9895, CVE-2016-9897, CVE-2016-9898,\nCVE-2016-9900, CVE-2016-9901, CVE-2016-9902, CVE-2016-9904, CVE-2016-9905).\n","modified":"2026-04-16T06:23:44.553119134Z","published":"2016-12-15T20:33:35Z","upstream":["CVE-2016-9893","CVE-2016-9895","CVE-2016-9897","CVE-2016-9898","CVE-2016-9899","CVE-2016-9900","CVE-2016-9901","CVE-2016-9902","CVE-2016-9904","CVE-2016-9905"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0420.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=19945"},{"type":"ADVISORY","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95/"},{"type":"WEB","url":"https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/"},{"type":"WEB","url":"https://rhn.redhat.com/errata/RHSA-2016-2946.html"}],"affected":[{"package":{"name":"firefox","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.6.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0420.json"}},{"package":{"name":"firefox-l10n","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/firefox-l10n?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.6.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0420.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}