USN-4278-2: Firefox vulnerabilities
26 February 2020
Firefox could be made to crash or run programs as your login if it opened a malicious website.
- firefox - Mozilla Open Source web browser
USN-4278-1 fixed vulnerabilities in Firefox. This update provides the
corresponding update for Ubuntu 16.04 LTS.
Original advisory details:
Multiple security issues were discovered in Firefox. If a user were tricked
in to opening a specially crafted website, an attacker could potentially
exploit these to cause a denial of service, conduct cross-site scripting
(XSS) attacks, or execute arbitrary code.