You are here

Mozilla Releases Security Update – Updated March 25, 2019

Mozilla Releases Security Update – Updated March 25, 2019

Created: Monday, March 25, 2019 - 23:02
Categories:
Cyber Security, Federal & State Resources

March 25, 2019

Mozilla has released a security update to address vulnerabilities in Thunderbird. An attacker could exploit these vulnerabilities to take control of an affected system. The NCCIC encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 60.6.1 and apply the necessary update. Read the advisory at NCCIC/US-CERT.

March 22, 2019

Mozilla has released security updates to address vulnerabilities in Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system. The NCCIC encourages users and administrators to review the Mozilla Security Advisories for Firefox 60.6.1 and Firefox 66.0.1 and apply the necessary updates. Read the advisory at NCCIC/US-CERT.

January 29, 2019

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review the Mozilla Security Advisories for Firefox 65 and Firefox ESR 60.5 and apply the necessary updates. Read the advisory at NCCIC/US-CERT.

December 11, 2018

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The NCCIC encourages users and administrators to review the Mozilla Security Advisories for Firefox 64 and Firefox ESR 60.4 and apply the necessary updates. NCCIC/US-CERT.

October 31, 2018

Mozilla has released a security update to address vulnerabilities in Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisory for Thunderbird ESR 60.3 and apply the necessary update. NCCIC/US-CERT.

October 4, 2018

Mozilla has released a security update to address vulnerabilities in Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 60.2.1 and apply the necessary update. NCCIC/US-CERT.

October 2, 2018

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisory for Firefox 62.0.3 and Firefox ESR 60.2.2 and apply the necessary updates. NCCIC/US-CERT.

June 7, 2018

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit these vulnerabilities to take control of an affected system. The NCCIC encourages users and administrators to review the Mozilla Security Advisory for Firefox 60.0.2 and Firefox ESR 52.8.1/60.0.2 and apply the necessary update. NCCIC/US-CERT.

May 18, 2018

Mozilla has released a security update to address vulnerabilities in Thunderbird. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.8 and apply the necessary update. NCCIC/US-CERT.

May 9, 2018

Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisories for Firefox ESR 52.8 and Firefox 60 and apply the necessary updates. NCCIC/US-CERT.

March 27, 2018

Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to cause a denial-of-service condition. NCCIC/US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox 59.0.2 and Firefox ESR 52.7.3 and apply the necessary updates. US-CERT.

March 13, 2018

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC/US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 59 and Firefox ESR 52.7 and apply the necessary updates. US-CERT.

January 30, 2018

Mozilla has released a security update to address a vulnerability in Firefox. Exploitation of this vulnerability may allow an attacker to take control of an affected system. NCCIC/US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox 58.0.1 and apply the necessary update. US-CERT.

January 25, 2018

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC/US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.6 and apply the necessary update. US-CERT.

December 25, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.5.2 and apply the necessary update. US-CERT.

December 7, 2017

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox 57.0.2 and ESR 52.5.2 and apply the necessary updates. US-CERT.

September 28, 2017

Mozilla has released security updates to address multiple vulnerabilities in Firefox ESR 52.4 and Firefox 56. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox ESR 52.4 and Firefox 56 and apply the necessary updates. US-CERT.

August 21, 2017

Mozilla released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update. US-CERT.

August 8, 2017

Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 55 and Firefox ESR 52.3 and apply the necessary updates. US-CERT.

June 15, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.2 and apply the necessary update. US-CERT.

June 13, 2017

Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox 54 and Firefox ESR 52.2 and apply the necessary update. US-CERT.

May 5, 2017

Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 53.0.2 and Firefox ESR 52.1.1 and apply the necessary updates. US-CERT.

April 19, 2017

Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 53Firefox ESR 45.9, and Firefox ESR 52.1 and apply the necessary updates. US-CERT.

March 7, 2017

Mozilla has released a security update to address multiple vulnerabilities in Firefox. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. Users and administrators are encouraged to review the Mozilla Security Advisory for Firefox and apply the necessary update. US-CERT.

January 24, 2017
 
US-CERT has alerted users to Mozilla’s release of a security update to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
December 14, 2016
 
US-CERT has alerted users to Mozilla’s release of security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include Firefox 50.1 and Firefox ESR 45.6. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
November 30, 2016
 
US-CERT has alerted users to Mozilla’s security update to address a vulnerability in Firefox, Firefox ESR, and Thunderbird.  Exploitation of this vulnerability may allow a remote attacker to take control of an affected system. Available updates include Firefox 50.0.2, Firefox ESR 45.5.1, and Thunderbird 45.5.1. Users and administrators are encouraged  to review the Mozilla Security Advisory and apply the necessary updates. US-CERT.
 
November 28, 2016
 
US-CERT has alerted users to Mozilla’s security update to address a vulnerability in Firefox versions 49 and 50. A remote attacker could exploit this vulnerability to take control of an affected system. Available updates include Firefox 50.0.1. Users and administrators are encouraged to review the Mozilla Security Advisory for Firefox and apply the necessary update. US-CERT.
 
November 15, 2016
 
US-CERT has alerted users to Mozilla’s security updates to address multiple vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. Available updates include Firefox 50 and Firefox ESR 45.5. Users and administrators are encouraged to review the Mozilla Security Advisory for Firefox and apply the necessary updates. US-CERT.
 
October 20, 2016
 
US-CERT has alerted users to Mozilla’s release of Firefox 49.0.2 to address a security vulnerability. Exploitation of this vulnerability may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Mozilla Security Advisory for Firefox and apply the necessary update. US-CERT.
 
September 20, 2016
 
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include Firefox 49 and Firefox ESR 45.4. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
August 3, 2016
 
US-CERT has alerted users to Mozilla’s security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
June 7, 2016
 
The Mozilla Foundation has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Network Security Services (NSS). Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Security Advisories for Firefox, Firefox ESR, and NSS 2016-62 and apply the necessary updates. US-CERT.
 
April 26, 2016
 
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
March 8, 2016
 
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: Firefox 45 and Firefox ESR 38.7. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
February 11, 2016
 
US-CERT has alerted users to the Mozilla Foundation's security updates to address vulnerabilities in Firefox and Firefox ESR. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include Firefox 44.0.2 and Firefox ESR 38.6.1. US-CERT encourages users and administrators to review the Security Advisory for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
January 26, 2016
 
US-CERT has alerted users that Mozilla has released security updates to address multiple vulnerabilities in Firefox. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include Firefox 44 andFirefox ESR 38.6. US-CERT encourages users and administrators to review Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
January 8, 2016
 
US-CERT has posted an alert regarding Mozilla's latest security updates to address a vulnerability in Firefox. Exploitation of this vulnerability may allow a remote attacker to obtain sensitive information from an affected system. Available updates include Firefox 43.0.2 and Firefox ESR 38.5.2. US-CERT encourages users and administrators to review Mozilla Security Advisory 2015-150 and apply the necessary update. US-CERT.
 
December 15, 2015
 
Mozilla Foundation has released security updates to address vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT.
 
September 26, 2015
 
US-CERT advises that the Mozilla Foundation has released security updates to address critical vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Security Advisories for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
August 7, 2015
 
The Mozilla Foundation has released security updates to address a critical vulnerability in the built-in PDF Viewer for Firefox and Firefox ESR. Exploitation of the vulnerability may allow an attacker to read and steal sensitive local files on the victim's computer. Available updates include Firefox 39.0.3 and Firefox ESR 38.1.1 US-CERT encourages users and administrators to review the Security Advisory for Firefox and Firefox ESR and apply the necessary updates. US-CERT.
 
July 9, 2015
 
US-CERT advises that Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. Exploitation of one of these vulnerabilities may allow an attacker to take control of an affected system. US-CERT encourages users and administrators to review the Security Advisory for FirefoxFirefox ESR, and Thunderbird and apply the necessary updates. US-CERT.
 
May 13, 2015
 
The Mozilla Foundation has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. Exploitation of one of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition or steal sensitive information. Available updates include: Firefox 38, Firefox ESR 31.7, and Thunderbird 31.7 US-CERT encourages users and administrators to review the Security Advisories for FirefoxFirefox ESR, and Thunderbird and apply the necessary updates. US-CERT.
 
April 21, 2015
 
US-CERT advises that the Mozilla Foundation has released Firefox 37.0.2 to address a vulnerability that may allow a remote attacker to take control of an affected system. US-CERT.
 
April 6, 2015
 
US-CERT advised that the Mozilla Foundation has released Firefox 37.0.1 to address two vulnerabilities, one of which may allow a remote attacker to conduct man-in-the-middle attacks. US-CERT.
 
March 31, 2015
 
The Mozilla Foundation has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT.
 
March 23, 2015
 
The Mozilla Foundation has released security updates to address vulnerabilities in Firefox, Firefox ESR, and SeaMonkey. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT.
 
February 26, 2015
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox, Firefox ESR, and Thunderbird. Exploitation of these vulnerabilities may allow a remote attacker to obtain sensitive information or execute arbitrary code on an affected system.Updates available include: Firefox 36; Firefox ESR 31.5; and Thunderbird 31.5. Users and administrators are encouraged to review the Security Advisories for FirefoxFirefox ESR, and Thunderbird and apply the necessary updates. US-CERT.
 
January 14, 2015
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox, Firefox ESR, SeaMonkey, and Thunderbird. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT.
 
October 15, 2014
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox and Thunderbird. Exploitation of these vulnerabilities may allow an attacker to obtain sensitive information, bypass same-origin policy and key pinning, cause an exploitable crash, conduct a man-in-the-middle attack, or execute arbitrary code. US-CERT.
 
September 24, 2014
 
US-CERT advises that a vulnerability in the Mozilla NSS library could allow an attacker to forge an RSA signature, such as an SSL certificate. The package is often included in 3rd party software, including Linux distributions, Google Chrome, and others. It is possible that other cryptographic libraries may be similarly affected. US-CERT.
 
September 3, 2014
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox and Thunderbird. Exploitation of these vulnerabilities may allow an attacker to cause an exploitable crash or execute arbitrary code. US-CERT.
 
June 13, 2014
 
US-CERT advises that security updates have been released to address vulnerabilities in Firefox, Firefox ESR 24.6, Thunderbird 24.6, and Netscape Portable Runtime 4.10.6. Users are encouraged to review these updates to determine which should be applied. US-CERT.
 
April 29, 2014
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox, Thunderbird, and Seamonkey. Exploitation of these vulnerabilities may allow an attacker to obtain sensitive information, cause a denial-of-service condition, execute arbitrary code, conduct phishing attacks, conduct a man-in-the-middle attack, or operate with elevated privileges on an affected system. Users and administrators are encouraged to review and apply the security updates as necessary. US-CERT.
 
March 18, 2014
 
The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox, Thunderbird, and Seamonkey. Exploitation of these vulnerabilities may allow an attacker to obtain sensitive information, cause a denial-of-service condition, execute arbitrary code, or operate with elevated privileges on an affected system. US-CERT.
 
February 4, 2014
 
US-CERT also advises of Mozilla’s release of updates to address multiple vulnerabilities in Firefox, Firefox ESR, Thunderbird, and Seamonkey. These vulnerabilities could allow a remote attacker to execute arbitrary code, bypass intended access restrictions, cause a denial-of-service condition, or obtain sensitive information. US-CERT.
 
November 19, 2013

The Mozilla Foundation has released updates to address vulnerabilities in four of its products that could allow a remote attacker to bypass intended security restrictions or cause a denial-of-service condition. Select from the product list below to be taken to the relevant update site: