Mozilla Firefox/Thunderbird certificate Parsing Vulnerability (CVE-2014-1560)
Release date:
Updated on:
Affected Systems:
Mozilla Firefox 31
Mozilla Thunderbird 31
Description:
--------------------------------------------------------------------------------
Bugtraq id: 68813
CVE (CAN) ID: CVE-2014-1560
Firefox/Thunderbird/SeaMonkey is the WEB browser and mail/newsgroup client released by Mozilla.
Firefox 31 and Thunderbird 31 have security issues when parsing SSL certificates. These problems are caused by the use of nonstandard character encoding in the certificates, which can cause errors in parsing these certificates.
<* Source: Christian Holler
Link: https://bugzilla.redhat.com/show_bug.cgi? CVE-2014-1558
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Mozilla
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.mozilla.org/security/
Manually install Firefox Flash plug-in Ubuntu 14.04
Replacement of Firefox in Ubuntu
Use apt-get to install FireFox and ThunderBird In Debian Linux
Stable Firefox 29 version released-how to install
Firefox details: click here
Firefox: click here
This article permanently updates the link address: